We are pleased to announce that new updated WAF rulesets version 3.01 were released to production.
Changelog
- Added a rule for WordPress WP Lead Plus X <= 0.99 - Multiple CSRF
- Added rules to prevent Joomla! spam via web contact
- Added a rule for WordPress LifterLMS < 3.37.15 Arbitrary File Writing (CVE-2020-6008)
- Added a rule for Klarna Checkout for WooCommerce < 2.0.10 - Authenticated Arbitrary Plugin manipulation
- Added a rule for notifying botnet attack on WordPress servers
- Improved a rule for WordPress Data Tables Generator By Supsystic < 1.9.92 - Multiple Vulnerabilities
- Improved a rule for WordPress plugin Templates Importer For Responsive < 2.2.6 CSRF