TRIP-WAF-20220206 - rule triggering issue
Hi WAF Support team...
I have a question about a firewall rule which is triggering a block on our app.
This rule is triggering: PHP, jQuery File Upload - Code Injection, Dangerous File Upload - CVE:CVE-2018-9206, CVE:CVE-2019-17132
Questions
1. does cloudflare check or scan files which are uploaded, thus classifying them as dangerous?
2. what is the best method to prevent a trigger like this from happening?
3. Is there a possibility that the rule is triggered due to a code issue?
We would really like to get some assistance on this potential issue. Thanks.
1 Reply
Starting a thread