We are pleased to announce that a new updated WAF ruleset version 3.37 has been released to production.

New ruleset

• Added rule id: 77316734 - IM360 WAF: Unprotected AJAX Action in XCloner Backup and Restore Plugin
• Updated rule id: 33341 - IM360 WAF: Block file upload for Infectors
• Updated rule id: 77140932 - IM360 WAF: Object Injection RCE vulnerability in Joomla CVE-2015-8562
• Updated rule id: 77230531 - IM360 WAF: CSRF vulnerability in Metronet Tag Manager plugin version 1.2.7 for WordPress (CVE-2018-1000506)
• Updated rule id: 77316731 - IM360 WAF: File Upload in Front-end Editor plugin for WordPress
• Updated rule id: 77316732 - IM360 WAF: File Upload Vulnerability in Awesome Support plugin for WordPress
• Updated rule id: 77316733 - IM360 WAF: File Upload Vulnerability in Fluid forms plugin for WordPress