WAF - WAF Release - 2025-04-02
1y ago
Source
CloudflareWAF - WAF Release - 2025-04-02cloudflare.comRuleset Rule ID Legacy Rule ID Description Previous Action New Action Comments Cloudflare Managed Ruleset 8b8074e73b7d4aba92fc68f3622f0483 100732 Sitecore - Code Injection - CVE:CVE-2025-27218 Log Block This is a New Detection Cloudflare Managed Ruleset 8350947451a1401c934f5e660f101cca 100733 Angular-Base64-Upload - Remote Code Execution - CVE:CVE-2024-42640 Log Block This is a New Detection Cloudflare Managed Ruleset a9ec9cf625ff42769298671d1bbcd247 100734 Apache Camel - Remote Code Execution - CVE:CVE-2025-29891 Log Disabled This is a New Detection Cloudflare Managed Ruleset 3d6bf99039b54312a1a2165590aea1ca 100735 Progress Software WhatsUp Gold - Remote Code Execution - CVE:CVE-2024-4885 Log Block This is a New Detection Cloudflare Managed Ruleset d104e3246dc14ac7851b4049d9d8c5f2 100737 Apache Tomcat - Remote Code Execution - CVE:CVE-2025-24813 Log Block This is a New Detection Cloudflare Managed Ruleset 21c7a963e1b749e7b1753238a28a42c4 100659 Common Payloads for Server-side Template Injection N/A Disabled N/A Cloudflare Managed Ruleset 887843ffbe90436dadd1543adaa4b037 100659 Common Payloads for Server-side Template Injection - Base64 N/A Disabled N/A Cloudflare Managed Ruleset 3565b80fc5b541b4832c0fc848f6a9cf 100642 LDAP Injection N/A Disabled N/A Cloudflare Managed Ruleset 44d7bf9bf0fa4898b8579573e0713e9f 100642 LDAP Injection Base64 N/A Disabled N/A Cloudflare Managed Ruleset e35c9a670b864a3ba0203ffb1bc977d1 100005 DotNetNuke - File Inclusion - CVE:CVE-2018-9126, CVE:CVE-2011-1892, CVE:CVE-2022-31474 N/A Disabled N/A Cloudflare Managed Ruleset cd8db44032694fdf8d6e22c1bb70a463 100527 Apache Struts - CVE:CVE-2021-31805 N/A Block N/A Cloudflare Managed Ruleset 0d838d9ab046443fa3f8b3e50c99546a 100702 Command Injection - CVE:CVE-2022-24108 N/A Block N/A Cloudflare Managed Ruleset 533fbad558ce4c5ebcf013f09a5581d0 100622C Ivanti - Command Injection - CVE:CVE-2023-46805, CVE:CVE-2024-21887, CVE:CVE-2024-22024 N/A Block N/A Cloudflare Managed Ruleset 04176552f62f4b75bf65981206d0b009 100536C GraphQL Command Injection N/A Disabled N/A Cloudflare Managed Ruleset 25883bf28575433c952b830c1651d0c8 100536 GraphQL Injection N/A Disabled N/A Cloudflare Managed Ruleset 7b70da1bb8d243bd80cd7a73af00f61d 100536A GraphQL Introspection N/A Disabled N/A Cloudflare Managed Ruleset 58c4853c250946359472b7eaa41e5b67 100536B GraphQL SSRF N/A Disabled N/A Cloudflare Managed Ruleset 1c241ed5f5bd44b19e17476b433e5b3d 100559A Prototype Pollution - Common Payloads N/A Disabled N/A Cloudflare Managed Ruleset af748489e1c2411d80d855954816b26f 100559A Prototype Pollution - Common Payloads - Base64 N/A Disabled N/A Cloudflare Managed Ruleset ccc47ab7e34248c09546c284fcea5ed2 100734 Apache Camel - Remote Code Execution - CVE:CVE-2025-29891 N/A Disabled N/A
You might also wanna read
Cloudflare expands AI bot management tools with granular traffic controls for all customers
Cloudflare is celebrating the second "Content Independence Day" by expanding AI traffic management options for all website owners. Building
Workers - Simpler runtime types with @cloudflare/workers-types v5
Cloudflare·1d ago
AI Search - Manage AI Search sync jobs with Wrangler CLI
Cloudflare·2d ago
Workers - Work across multiple accounts with Wrangler auth profiles
Cloudflare·2d ago
Cache - Cache multiple versions of a URL with Vary
Cloudflare·2d ago
Cloudflare One - Hostname routing for Cloudflare Mesh
Cloudflare·2d ago

Comments
Sign in to join the conversation.
No comments yet. Be the first.