Impact 4
Reason: Detects JavaScript language constructs
Log line: /romain/include-favicon.php?url=http://yaisb.blogspot.com/favicon.ico
Matching Regexp:([^*:\s\w,.\/?+-]\s*)?(?<![a-z]\s)(?<![a-z\/_@>-])(\s*return\s*)?(?:globalstorage|sessionstorage|postmessage|callee|constructor|content|domain|prototype|try|catch|top|call|apply|url|function|object|array|string|math|if|elseif|case|switch|regex|boolean|location|settimeout|setinterval|void|setexpression|namespace)(?(1)[^\w%"]|(?:\s*[^@\s\w%",.+-]))
Reason: Detects JavaScript language constructs
Log line: /romain/include-favicon.php?url=http://blog.ianbicking.org/favicon.ico
Matching Regexp:([^*:\s\w,.\/?+-]\s*)?(?<![a-z]\s)(?<![a-z\/_@>-])(\s*return\s*)?(?:globalstorage|sessionstorage|postmessage|callee|constructor|content|domain|prototype|try|catch|top|call|apply|url|function|object|array|string|math|if|elseif|case|switch|regex|boolean|location|settimeout|setinterval|void|setexpression|namespace)(?(1)[^\w%"]|(?:\s*[^@\s\w%",.+-]))
Reason: Detects JavaScript language constructs
Log line: /romain/include-favicon.php?url=http://www.cigital.com/favicon.ico
Matching Regexp:([^*:\s\w,.\/?+-]\s*)?(?<![a-z]\s)(?<![a-z\/_@>-])(\s*return\s*)?(?:globalstorage|sessionstorage|postmessage|callee|constructor|content|domain|prototype|try|catch|top|call|apply|url|function|object|array|string|math|if|elseif|case|switch|regex|boolean|location|settimeout|setinterval|void|setexpression|namespace)(?(1)[^\w%"]|(?:\s*[^@\s\w%",.+-]))
Reason: Detects JavaScript language constructs
Log line: /romain/include-favicon.php?url=http://www.hackosis.com/favicon.ico
Matching Regexp:([^*:\s\w,.\/?+-]\s*)?(?<![a-z]\s)(?<![a-z\/_@>-])(\s*return\s*)?(?:globalstorage|sessionstorage|postmessage|callee|constructor|content|domain|prototype|try|catch|top|call|apply|url|function|object|array|string|math|if|elseif|case|switch|regex|boolean|location|settimeout|setinterval|void|setexpression|namespace)(?(1)[^\w%"]|(?:\s*[^@\s\w%",.+-]))
Reason: Detects JavaScript language constructs
Log line: /romain/include-favicon.php?url=http://jeremy.zawodny.com/favicon.ico
Matching Regexp:([^*:\s\w,.\/?+-]\s*)?(?<![a-z]\s)(?<![a-z\/_@>-])(\s*return\s*)?(?:globalstorage|sessionstorage|postmessage|callee|constructor|content|domain|prototype|try|catch|top|call|apply|url|function|object|array|string|math|if|elseif|case|switch|regex|boolean|location|settimeout|setinterval|void|setexpression|namespace)(?(1)[^\w%"]|(?:\s*[^@\s\w%",.+-]))
Reason: Detects JavaScript language constructs
Log line: /romain/include-favicon.php?url=http://www.modsecurity.org/favicon.ico
Matching Regexp:([^*:\s\w,.\/?+-]\s*)?(?<![a-z]\s)(?<![a-z\/_@>-])(\s*return\s*)?(?:globalstorage|sessionstorage|postmessage|callee|constructor|content|domain|prototype|try|catch|top|call|apply|url|function|object|array|string|math|if|elseif|case|switch|regex|boolean|location|settimeout|setinterval|void|setexpression|namespace)(?(1)[^\w%"]|(?:\s*[^@\s\w%",.+-]))
Reason: Detects JavaScript language constructs
Log line: /romain/include-favicon.php?url=http://googleonlinesecurity.blogspot.com/favicon.ico
Matching Regexp:([^*:\s\w,.\/?+-]\s*)?(?<![a-z]\s)(?<![a-z\/_@>-])(\s*return\s*)?(?:globalstorage|sessionstorage|postmessage|callee|constructor|content|domain|prototype|try|catch|top|call|apply|url|function|object|array|string|math|if|elseif|case|switch|regex|boolean|location|settimeout|setinterval|void|setexpression|namespace)(?(1)[^\w%"]|(?:\s*[^@\s\w%",.+-]))
Reason: Detects JavaScript language constructs
Log line: /romain/include-favicon.php?url=http://jeremiahgrossman.blogspot.com/favicon.ico
Matching Regexp:([^*:\s\w,.\/?+-]\s*)?(?<![a-z]\s)(?<![a-z\/_@>-])(\s*return\s*)?(?:globalstorage|sessionstorage|postmessage|callee|constructor|content|domain|prototype|try|catch|top|call|apply|url|function|object|array|string|math|if|elseif|case|switch|regex|boolean|location|settimeout|setinterval|void|setexpression|namespace)(?(1)[^\w%"]|(?:\s*[^@\s\w%",.+-]))
Reason: Detects JavaScript language constructs
Log line: /romain/include-favicon.php?url=http://kuza55.blogspot.com/favicon.ico
Matching Regexp:([^*:\s\w,.\/?+-]\s*)?(?<![a-z]\s)(?<![a-z\/_@>-])(\s*return\s*)?(?:globalstorage|sessionstorage|postmessage|callee|constructor|content|domain|prototype|try|catch|top|call|apply|url|function|object|array|string|math|if|elseif|case|switch|regex|boolean|location|settimeout|setinterval|void|setexpression|namespace)(?(1)[^\w%"]|(?:\s*[^@\s\w%",.+-]))
Reason: Detects JavaScript language constructs
Log line: /romain/include-favicon.php?url=http://myappsecurity.blogspot.com/favicon.ico
Matching Regexp:([^*:\s\w,.\/?+-]\s*)?(?<![a-z]\s)(?<![a-z\/_@>-])(\s*return\s*)?(?:globalstorage|sessionstorage|postmessage|callee|constructor|content|domain|prototype|try|catch|top|call|apply|url|function|object|array|string|math|if|elseif|case|switch|regex|boolean|location|settimeout|setinterval|void|setexpression|namespace)(?(1)[^\w%"]|(?:\s*[^@\s\w%",.+-]))
Reason: Detects JavaScript language constructs
Log line: /romain/include-favicon.php?url=http://myappsecurity.blogspot.com/favicon.ico
Matching Regexp:([^*:\s\w,.\/?+-]\s*)?(?<![a-z]\s)(?<![a-z\/_@>-])(\s*return\s*)?(?:globalstorage|sessionstorage|postmessage|callee|constructor|content|domain|prototype|try|catch|top|call|apply|url|function|object|array|string|math|if|elseif|case|switch|regex|boolean|location|settimeout|setinterval|void|setexpression|namespace)(?(1)[^\w%"]|(?:\s*[^@\s\w%",.+-]))
Impact 5
Reason: Detects url injections and RFE attempts
Log line: /romain/include-favicon.php?url=http://yaisb.blogspot.com/favicon.ico
Matching Regexp:(?:\w+]?(?<!href)(?<!src)(?<!longdesc)(?<!returnurl)=(?:https?|ftp):)|(?:\{\s*\$\s*\{)
Reason: Detects url injections and RFE attempts
Log line: /romain/include-favicon.php?url=http://blog.ianbicking.org/favicon.ico
Matching Regexp:(?:\w+]?(?<!href)(?<!src)(?<!longdesc)(?<!returnurl)=(?:https?|ftp):)|(?:\{\s*\$\s*\{)
Reason: Detects url injections and RFE attempts
Log line: /romain/include-favicon.php?url=http://www.cigital.com/favicon.ico
Matching Regexp:(?:\w+]?(?<!href)(?<!src)(?<!longdesc)(?<!returnurl)=(?:https?|ftp):)|(?:\{\s*\$\s*\{)
Reason: Detects url injections and RFE attempts
Log line: /romain/include-favicon.php?url=http://www.hackosis.com/favicon.ico
Matching Regexp:(?:\w+]?(?<!href)(?<!src)(?<!longdesc)(?<!returnurl)=(?:https?|ftp):)|(?:\{\s*\$\s*\{)
Reason: Detects url injections and RFE attempts
Log line: /romain/include-favicon.php?url=http://jeremy.zawodny.com/favicon.ico
Matching Regexp:(?:\w+]?(?<!href)(?<!src)(?<!longdesc)(?<!returnurl)=(?:https?|ftp):)|(?:\{\s*\$\s*\{)
Reason: Detects url injections and RFE attempts
Log line: /romain/include-favicon.php?url=http://www.modsecurity.org/favicon.ico
Matching Regexp:(?:\w+]?(?<!href)(?<!src)(?<!longdesc)(?<!returnurl)=(?:https?|ftp):)|(?:\{\s*\$\s*\{)
Reason: Detects url injections and RFE attempts
Log line: /romain/include-favicon.php?url=http://googleonlinesecurity.blogspot.com/favicon.ico
Matching Regexp:(?:\w+]?(?<!href)(?<!src)(?<!longdesc)(?<!returnurl)=(?:https?|ftp):)|(?:\{\s*\$\s*\{)
Reason: Detects url injections and RFE attempts
Log line: /romain/include-favicon.php?url=http://jeremiahgrossman.blogspot.com/favicon.ico
Matching Regexp:(?:\w+]?(?<!href)(?<!src)(?<!longdesc)(?<!returnurl)=(?:https?|ftp):)|(?:\{\s*\$\s*\{)
Reason: Detects url injections and RFE attempts
Log line: /romain/include-favicon.php?url=http://kuza55.blogspot.com/favicon.ico
Matching Regexp:(?:\w+]?(?<!href)(?<!src)(?<!longdesc)(?<!returnurl)=(?:https?|ftp):)|(?:\{\s*\$\s*\{)
Reason: Detects url injections and RFE attempts
Log line: /romain/include-favicon.php?url=http://myappsecurity.blogspot.com/favicon.ico
Matching Regexp:(?:\w+]?(?<!href)(?<!src)(?<!longdesc)(?<!returnurl)=(?:https?|ftp):)|(?:\{\s*\$\s*\{)
Reason: Detects url injections and RFE attempts
Log line: /romain/include-favicon.php?url=http://myappsecurity.blogspot.com/favicon.ico
Matching Regexp:(?:\w+]?(?<!href)(?<!src)(?<!longdesc)(?<!returnurl)=(?:https?|ftp):)|(?:\{\s*\$\s*\{)