signature description: Web Application Security Test/Attack
Signature ID 7212/0
We have an IPS in front of an eCommerce site, and we see this signature fire frequently. I'm having trouble determining if the signature is misfiring, or if these are legitimate attacks.
Is anyone else experiencing this or is there anyone who has more knowledge on what triggers this signature?