<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-5HLVVHN" height="0" width="0" style="display:none;visibility:hidden">

Beta: WAF Rules Updated

Mar 11, 2020 8:35:02 AM / by Inessa Atmachian

 

WAF-beta-release1
We are pleased to announce that the new updated WAF rulesets version 2.96 were released to our updates-testing repository.

Changelog

  • Develop rules for WordPress Plugin Participants Database < 1.9.5.6 Authenticated Time Based SQL Injection
  • Develop a rule for WordPress Plugin Registration Magic < 4.6.0.3 Authenticated SQL Injection
  • Develop a rule for WordPress Plugin Huge IT Slider 2.6.8 SQL Injection (CVE-2015-2062)
  • Develop a rule for WordPress Plugin Adminer <= 1.4.5 Security Bypass
  • Develop a rule for WordPress Plugin Htaccess by BestWebSoft <= 1.8.1 CSRF to edit .htaccess
  • Develop rules for WordPress Plugin Ultimate Membership Pro < 8.6.1 Multiple Critical Vulnerabilities
  • Develop a rule for WordPress Plugin contact-form-7 5.1.6 Remote File Upload
  • Develop a rule for Arbitrary file upload in class.upload.php (CVE-2019-19634)

Topics: beta, WAF, ModSecurity, Release

Inessa Atmachian

Written by Inessa Atmachian

Inessa Atmachian is a Technical Writer. She is responsible for developing technical product documentation for CloudLinux OS, KernelCare, and Imunify360 products. She provides customers with release notes and information on product updates.