Skip to content

Scheduled changes

Subscribe to RSS

2025-12-01

WAF Release - Scheduled changes for 2025-12-08

Announcement Date	Release Date	Release Behavior	Legacy Rule ID	Rule ID	Description	Comments
2025-12-01	2025-12-08	Unchanged (rule remains disabled)	N/A		Anomaly:Body - Large 2	Default action changes from Log to Block while the rule stays disabled. If you override and enable the rule, review recent log events to ensure blocking will not affect legitimate traffic.
2025-12-01	2025-12-08	Log	N/A		Atlassian Confluence - Code Injection - CVE:CVE-2021-26084 - Beta	This is a beta detection and will replace the action on original detection "Atlassian Confluence - Code Injection - CVE:CVE-2021-26084" (ID: )
2025-12-01	2025-12-08	Log	N/A		PostgreSQL - SQLi - Copy - Beta	This is a beta detection and will replace the action on original detection "PostgreSQL - SQLi - COPY" (ID: )
2025-12-01	2025-12-08	Log	N/A		SQLi - AND/OR MAKE_SET/ELT - Beta	This is a beta detection and will replace the action on original detection "SQLi - AND/OR MAKE_SET/ELT" (ID: )
2025-12-01	2025-12-08	Log	N/A		SQLi - Benchmark Function - Beta	This is a beta detection and will replace the action on original detection "SQLi - Benchmark Function" (ID: )
2025-12-01	2025-12-08	Log	N/A		SQLi - Comment - Beta	This is a beta detection and will replace the action on original detection "SQLi - Comment" (ID: )
2025-12-01	2025-12-08	Log	N/A		SQLi - Comparison - Beta	This is a beta detection and will replace the action on original detection "8166da327a614849bfa29317e7907480" (ID: )
2025-12-01	2025-12-08	Log	N/A		Generic Rules - Command Execution - Body	This is a new detection.
2025-12-01	2025-12-08	Log	N/A		Generic Rules - Command Execution - Header	This is a new detection.
2025-12-01	2025-12-08	Log	N/A		Generic Rules - Command Execution - URI	This is a new detection.
2025-12-01	2025-12-08	Log	N/A		SQLi - String Function - Beta	This is a beta detection and will replace the action on original detection "SQLi - String Function" (ID: )
2025-12-01	2025-12-08	Log	N/A		SQLi - Sub Query - Beta	This is a beta detection and will replace the action on original detection "SQLi - Sub Query" (ID: )
2025-12-01	2025-12-08	Log	N/A		SQLi - Tautology - URI - Beta	This is a beta detection and will replace the action on original detection "SQLi - Tautology - URI" (ID: )
2025-12-01	2025-12-08	Log	N/A		SQLi - WaitFor Function - Beta	This is a beta detection and will replace the action on original detection "SQLi - WaitFor Function" (ID: )
2025-12-01	2025-12-08	Log	N/A		SQLi - AND/OR Digit Operator Digit 2 - Beta	This is a beta detection and will replace the action on original detection "SQLi - AND/OR Digit Operator Digit" (ID: )
2025-12-01	2025-12-08	Log	N/A		SQLi - Equation 2 - Beta	This is a beta detection and will replace the action on original detection "SQLi - Equation" (ID: )
2025-12-01	2025-12-08	Log	N/A		WordPress, Drupal - Code Injection, Deserialization - Stream Wrapper - CVE:CVE-2019-11831, CVE:CVE-2019-6339, CVE:CVE-2018-1000773 - Beta	This is a beta detection and will replace the action on original detection "Wordpress, Drupal - Code Injection, Deserialization - Stream Wrapper - CVE:CVE-2019-11831, CVE:CVE-2019-6339, CVE:CVE-2018-1000773" (ID: )
2025-12-01	2025-12-08	Log	N/A		XWiki - Remote Code Execution - CVE:CVE-2025-24893 - Beta	This is a beta detection and will replace the action on original detection "XWiki - Remote Code Execution - CVE:CVE-2025-24893" (ID: )
2025-12-01	2025-12-08	Log	N/A		Django SQLI - CVE:CVE-2025-64459	This is a new detection.

For other WAF updates, refer to the changelog.

Was this helpful?

Community
X
Discord
YouTube
GitHub