'; } else{ echo ''; } echo 'Hillstone Networks'; } elseif ($_SERVER[HTTP_HOST] == "update1.huaantech.com.cn") { echo ''; echo 'huaantech'; } elseif ($_SERVER[HTTP_HOST] == "update1.dcnetworks.com.cn") { echo ''; echo 'dcnetworks'; } elseif ($_SERVER[HTTP_HOST] == "update1.w-ibeda.com") { if (false===strpos($_SERVER[REQUEST_URI],"/en/")) echo ''; else echo ''; echo 'w-ibeda'; } elseif ($_SERVER[HTTP_HOST] == "update1.hp-telecom.com") { echo ''; echo 'hp-telecom'; } elseif ($_SERVER[HTTP_HOST] == "update1.maipu.com") { echo ''; echo 'Maipu'; } elseif ($_SERVER[HTTP_HOST] == "update1.ncurity.com") { echo ''; echo 'Ncurity'; } elseif ($_SERVER[HTTP_HOST] == "update1.socusnetwork.com") { echo ''; echo 'Socusnetwork'; } else{ echo ''; echo 'Hillstone Networks'; } ?>
 
   
 

access_scanner:ssrf(Rule ID:1060110039)

Release Date2026/6/29

Rule NameSSRF Scanning Detection

Severity:mid

CVE ID

 

Descripiton

Web scanner is a kind of program to automatically detect security vulnerabilities of local or remote hosts. It finds vulnerabilities of the targets fastly and accurately and provides scan reports for users. This rule detects suspicious behavior that exploits Google's IP addresses or domains to probe whether a server is vulnerable to Server-Side Request Forgery (SSRF). This rule supports to defend the A5: Security Misconfiguration of OWASP Top 10 - 2021.
Other reference:None

 

Solution

Update vendor patches.