WAF – WAF Release – 2025-12-18

WAF – WAF Release – 2025-12-18

Modern Workspace Pro 18 December 2025No CommentsCloudflare, WAF

This week’s release focuses on improvements to existing detections to enhance coverage.

Key Findings

Existing rule enhancements have been deployed to improve detection resilience against broad classes of web attacks and strengthen behavioral coverage.

Ruleset	Rule ID	Legacy Rule ID	Description	Previous Action	New Action	Comments
Cloudflare Managed Ruleset	6429f7386b1546cf9dfce631be5ec20c	N/A	Atlassian Confluence – Code Injection – CVE:CVE-2021-26084 – Beta	Log	Block	This rule is merged into the original rule “Atlassian Confluence – Code Injection – CVE:CVE-2021-26084” (ID: e8c550810618437c953cf3a969e0b97a )
Cloudflare Managed Ruleset	9108ddb347b3497e9f9351640d9206e3	N/A	PostgreSQL – SQLi – Copy – Beta	Log	Block	This rule is merged into the original rule “PostgreSQL – SQLi – COPY” (ID: 705a6b5569d5472596910e3ce7265a4e )
Cloudflare Managed Ruleset	cb687d73cc954092b58b90b00cd00ba7	N/A	Generic Rules – Command Execution – Body	Log	Disabled	This is a new detection.
Cloudflare Managed Ruleset	bf30657ffa2a424cbf6570dbcd679ad4	N/A	Generic Rules – Command Execution – Header	Log	Disabled	This is a new detection.
Cloudflare Managed Ruleset	6df040f716194070a242967cfd181fb3	N/A	Generic Rules – Command Execution – URI	Log	Disabled	This is a new detection.
Cloudflare Managed Ruleset	39a4fdc37be948709fa7492e7a95bc3a	N/A	SQLi – Tautology – URI – Beta	Log	Block	This rule is merged into the original rule “SQLi – Tautology – URI” (ID: 4c580ea1b5174183b7f5e940b3de2e0a )
Cloudflare Managed Ruleset	810e0ffe1dd84e67b159129b432ac90d	N/A	SQLi – WaitFor Function – Beta	Log	Block	This rule is merged into the original rule “SQLi – WaitFor Function” (ID: b16fe708799441dea3049a99d5faba59 )
Cloudflare Managed Ruleset	80690005fef342e0ad6bc9af596c741e	N/A	SQLi – AND/OR Digit Operator Digit 2 – Beta	Log	Block	This rule is merged into the original rule “SQLi – AND/OR Digit Operator Digit” (ID: 98e7e08ae64247e2801ca4b388d80772 )
Cloudflare Managed Ruleset	eaf11ab80b0d491cbb7186f303b2f3fe	N/A	SQLi – Equation 2 – Beta	Log	Block	This rule is merged into the original rule “SQLi – Equation” (ID: 133c6f83cdf14509a4ca6b82a72a6b3a )

Source: Cloudflare

Latest Posts

Dynamics 365 Contact Center- Set least active assignment as default in messaging queues [MC1215836]
(Updated) Legacy SharePoint Online Content Delivery Network (CDN) domain to be retired—review configurations [MC1184996]
(Updated) Microsoft 365 Copilot: RSVP to meetings directly in Copilot chat [MC1192258]
Amazon DocumentDB (with MongoDB compatibility) is Now Available in the Asia Pacific (Jakarta) Region

Pass It On

Leave a Comment

Comments

No comments yet. Why don’t you start the discussion?

Leave a Reply Cancel reply

GemPix 2 on Microsoft Outlook: Updated behavior for switching back from new Outlook to classic Outlook for Windows [MC1066342]4 January 2026
This update seems like a thoughtful response to user feedback around changes in Outlook. A smoother transition between versions will…
GemPix 2 on Legacy Microsoft Outlook for Mac: Support will end [MC994282]4 January 2026
This change makes sense in terms of keeping the platform secure and feature-rich. I wonder if any organizations will be…
GemPix 2 on Power Pages version 9.7.2.x Early Upgrade Release [MC1011716]4 January 2026
The emphasis on performance and security updates is reassuring, but I’m wondering how this will impact users during the maintenance…
Snow Rider 3D on Amazon Cognito now supports resource indicators to simplify enhancing protection of OAuth 2.0 resources28 October 2025
Wow, this change in Cognito sounds like a game-changer for security! It's kinda wild how little things like specifying resource…
URL on Update to inline image representation in Outlook on the web and new Outlook for Windows [MC1174855]24 October 2025
... [Trackback] [...] Read More here: mwpro.co.uk/blog/2025/10/18/update-to-inline-image-representation-in-outlook-on-the-web-and-new-outlook-for-windows-mc1174855/ [...]