Imunify360 Blog

WAF Rules v.3.51 Released

Written by Inessa Atmachian | Dec 18, 2020 3:07:52 PM

We are pleased to announce that a new updated WAF ruleset version 3.51 has been released.

Changelog

  • Added rule id: 77316763 - IM360 WAF: Unsafe deserialization leading to RCE in WordPress plugin Welcart e-Commerce < 1.9.36
  • Added rule id: 77316764 - IM360 WAF: WHMCS API login attempt
  • Added rule id: 77316765 - IM360 WAF: WHMCS link login attempt
  • Added rule id: 77316766 - IM360 WAF: Suspicious files access
  • Added rule id: 77316767 - IM360 WAF: Administrator account takeover in the Easy WP SMTP plugin for WordPress
  • Added rule id: 77316768 - IM360 WAF: Unauthenticated Arbitrary File Upload in the WordPress Plugin The Contact Form 7 <= 5.3.1
  • Updated rule id: 33353 - IM360 WAF: OpenCart Bruteforce RBL block
  • Updated rule id: 77211190 - IM360 WAF: Remote File Access Attempt
  • Updated rule id: 77316756 - IM360 WAF: Suspicious files access
  • Updated rule id: 77316759 - IM360 WAF: Track WordPress theme/plugin install
  • Updated rule id: 77316761 - IM360 WAF: Block interaction with malicious plugin