WAF – WAF Release – Scheduled changes for 2025-09-08
Posted inCloudflare WAF

WAF – WAF Release – Scheduled changes for 2025-09-08

No CommentsPosted inCloudflare, WAF
Announcement DateRelease DateRelease BehaviorLegacy Rule IDRule IDDescriptionComments
2025-09-012025-09-08Log100007D7c5812a31fd94996b3299f7e963d7afc Command Injection – Common Attack Commands ArgsBeta detection. This will be merged into the original rule “Command Injection – Common Attack Commands” (ID: 89557ce9b26e4d4dbf29e90c28345b9b )
2025-09-012025-09-08Log100617cd528243d6824f7ab56182988230a75b Next.js – SSRF – CVE:CVE-2025-57822This is a New Detection
2025-09-012025-09-08Log100659_BETA503b337dac5c409d8f833a6ba22dabf1 Common Payloads for Server-Side Template Injection – BetaBeta detection. This will be merged into the original rule “Common Payloads for Server-Side Template Injection” (ID: 21c7a963e1b749e7b1753238a28a42c4 )
2025-09-012025-09-08Log100824B6d24266148f24f5e9fa487f8b416b7ca CrushFTP – Remote Code Execution – CVE:CVE-2025-54309 – 3This is a New Detection
2025-09-012025-09-08Log100848154b217c43d04f11a13aeff05db1fa6b ScriptCase – Auth Bypass – CVE:CVE-2025-47227This is a New Detection
2025-09-012025-09-08Log100849cad6f1c8c6d44ef59929e6532c62d330 ScriptCase – Command Injection – CVE:CVE-2025-47228This is a New Detection
2025-09-012025-09-08Log100872e7464139fd3e44938b56716bef971afd WordPress:Plugin:InfiniteWP Client – Missing Authorization – CVE:CVE-2020-8772This is a New Detection
2025-09-012025-09-08Log1008730181ebb2cc234f2d863412e1bab19b0b Sar2HTML – Command Injection – CVE:CVE-2025-34030This is a New Detection
2025-09-012025-09-08Log10087534d5c7c7b08b40eaad5b2bb3f24c0fbe Zhiyuan OA – Remote Code Execution – CVE:CVE-2025-34040This is a New Detection

Source: Cloudflare



Latest Posts

Pass It On
Leave a Comment

Comments

No comments yet. Why don’t you start the discussion?

Leave a Reply

Your email address will not be published. Required fields are marked *