August 23, 2022

Ruleset

Policy

Description of Update

Previous Action

New Action

Protocol Validation

Prevent Malformed Request Methods

This policy has been updated to detect and validate missing content-type headers with no request body

Block

Composite

Protocol Validation

Prevent Malformed Request Methods

This policy has been updated to detect restricted charset parameters within the content-type header

Block

Composite

WAF & OWASP Top Threats

Code Injection

The policy is now covering the PHPUnit vulnerability

Block

Block

WAF & OWASP Top Threats

Shell Injection

The policy is now covering the PHPUnit vulnerability

Block

Block

IP Reputation

Traffic Via CDNs

The policy now covers more CDN providers

JS Validation