https://live.paloaltonetworks.com/t5/general-topics/sql-injection-lilupophilupop-part-2/m-p/16248#M11869 <HTML><HEAD></HEAD><BODY><P>This link is only for submitting new application requests. For threat coverage, check out the threat vault or open a case with support for a new threat.</P></BODY></HTML> Wed, 05 Sep 2012 21:41:40 GMT SRA 2012-09-05T21:41:40Z https://live.paloaltonetworks.com/t5/general-topics/sql-injection-lilupophilupop-part-2/m-p/16246#M11867 <HTML><HEAD></HEAD><BODY><P>Hi, recently a famous SQL Injection has started up once more.</P><P></P><P>Will there be a vulnerability signature update which includes this new version of the Lilupophilupop SQL Injection code?</P><P></P><P>More information can be found at <A href="http://isc.sans.edu/diary/SQL+Injection+Lilupophilupop+style+Part+2/13864" title="http://isc.sans.edu/diary/SQL+Injection+Lilupophilupop+style+Part+2/13864">ISC Diary | SQL Injection Lilupophilupop style, Part 2</A></P><P></P><P>-Dan</P></BODY></HTML> Thu, 09 Aug 2012 13:42:18 GMT https://live.paloaltonetworks.com/t5/general-topics/sql-injection-lilupophilupop-part-2/m-p/16246#M11867 dciccone 2012-08-09T13:42:18Z https://live.paloaltonetworks.com/t5/general-topics/sql-injection-lilupophilupop-part-2/m-p/16247#M11868 <HTML><HEAD></HEAD><BODY><P>You can request app enhancement from the Apps and Threats Research Center.</P><P></P><P><A class="jive-link-external-small" href="http://www.paloaltonetworks.com/researchcenter/tools/">http://www.paloaltonetworks.com/researchcenter/tools/</A></P><P></P><P>From there you can click on Submit an app and provide details there.</P><P></P><P>I think the above can also be used to suggest new/updated threatid's (in case the threat team somehow missed it).</P></BODY></HTML> Mon, 20 Aug 2012 22:23:17 GMT https://live.paloaltonetworks.com/t5/general-topics/sql-injection-lilupophilupop-part-2/m-p/16247#M11868 mikand 2012-08-20T22:23:17Z https://live.paloaltonetworks.com/t5/general-topics/sql-injection-lilupophilupop-part-2/m-p/16248#M11869 <HTML><HEAD></HEAD><BODY><P>This link is only for submitting new application requests. For threat coverage, check out the threat vault or open a case with support for a new threat.</P></BODY></HTML> Wed, 05 Sep 2012 21:41:40 GMT https://live.paloaltonetworks.com/t5/general-topics/sql-injection-lilupophilupop-part-2/m-p/16248#M11869 SRA 2012-09-05T21:41:40Z https://live.paloaltonetworks.com/t5/general-topics/sql-injection-lilupophilupop-part-2/m-p/16249#M11870 <HTML><HEAD></HEAD><BODY><P class="p1">We normally don't write signatures for specific URLs that end up getting inserted via SQL injection attacks, unless they are exceptionally pervasive.&nbsp; These are everywhere and it is impossible to cover them all. Instead we have generic SQL injection signatures that can detect many common SQL injection attempts, and customers can also write custom vulnerability signatures for specific SQL injection attacks that you may be concerned about. </P></BODY></HTML> Wed, 05 Sep 2012 21:58:33 GMT https://live.paloaltonetworks.com/t5/general-topics/sql-injection-lilupophilupop-part-2/m-p/16249#M11870 fredallee 2012-09-05T21:58:33Z