Skip to content

Commit 6e9cd78

Browse files
vs-mgvs-mg
authored
Release-Oct-03-2025: 21 Rules (#25617)
Release-Oct-03-2025: 21 Rules (#25617)
1 parent 7bc4e5d commit 6e9cd78

File tree

1 file changed

+258
-0
lines changed

1 file changed

+258
-0
lines changed

src/content/changelog/waf/2025-10-03-waf-release.mdx

Lines changed: 258 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,258 @@
1+
---
2+
title: "WAF Release - 2025-10-03"
3+
description: Cloudflare WAF managed rulesets 2025-10-03 release
4+
date: 2025-10-03
5+
---
6+
7+
import { RuleID } from "~/components";
8+
9+
**Managed Ruleset Updated**
10+
11+
This update introduces 21 new detections in the Cloudflare Managed Ruleset (all currently set to Disabled mode to preserve remediation logic and allow quick activation if needed). The rules cover a broad spectrum of threats - SQL injection techniques, command and code injection, information disclosure of common files, URL anomalies, and cross-site scripting.
12+
13+
<table style="width: 100%">
14+
<thead>
15+
<tr>
16+
<th>Ruleset</th>
17+
<th>Rule ID</th>
18+
<th>Legacy Rule ID</th>
19+
<th>Description</th>
20+
<th>Previous Action</th>
21+
<th>New Action</th>
22+
<th>Comments</th>
23+
</tr>
24+
</thead>
25+
<tbody>
26+
<tr>
27+
<td>Cloudflare Managed Ruleset</td>
28+
<td>
29+
<RuleID id="0d02c2fb14eb4cec9c2e2b58d61fac74" />
30+
</td>
31+
<td>100902</td>
32+
<td>Generic Rules - Command Execution - 2</td>
33+
<td>N/A</td>
34+
<td>Disabled</td>
35+
<td>This is a New Detection</td>
36+
</tr>
37+
<tr>
38+
<td>Cloudflare Managed Ruleset</td>
39+
<td>
40+
<RuleID id="c3079865ce9a41368657026b514aeeb8" />
41+
</td>
42+
<td>100908</td>
43+
<td>Generic Rules - Command Execution - 3</td>
44+
<td>N/A</td>
45+
<td>Disabled</td>
46+
<td>This is a New Detection</td>
47+
</tr>
48+
<tr>
49+
<td>Cloudflare Managed Ruleset</td>
50+
<td>
51+
<RuleID id="107ae2922b654bb28df7ca978d46a6f4" />
52+
</td>
53+
<td>100910</td>
54+
<td>Generic Rules - Command Execution - 4</td>
55+
<td>N/A</td>
56+
<td>Disabled</td>
57+
<td>This is a New Detection</td>
58+
</tr>
59+
<tr>
60+
<td>Cloudflare Managed Ruleset</td>
61+
<td>
62+
<RuleID id="68bdb75ae6d24e139a83e5731bd0a329" />
63+
</td>
64+
<td>100915</td>
65+
<td>Generic Rules - Command Execution - 5</td>
66+
<td>N/A</td>
67+
<td>Disabled</td>
68+
<td>This is a New Detection</td>
69+
</tr>
70+
<tr>
71+
<td>Cloudflare Managed Ruleset</td>
72+
<td>
73+
<RuleID id="ea04bb580f7d400386c7dc1d5e51450a" />
74+
</td>
75+
<td>100899</td>
76+
<td>Generic Rules - Content-Type Abuse</td>
77+
<td>N/A</td>
78+
<td>Disabled</td>
79+
<td>This is a New Detection</td>
80+
</tr>
81+
<tr>
82+
<td>Cloudflare Managed Ruleset</td>
83+
<td>
84+
<RuleID id="233364f656ff42b8acc41dcd7996012f" />
85+
</td>
86+
<td>100914</td>
87+
<td>Generic Rules - Content-Type Injection</td>
88+
<td>N/A</td>
89+
<td>Disabled</td>
90+
<td>This is a New Detection</td>
91+
</tr>
92+
<tr>
93+
<td>Cloudflare Managed Ruleset</td>
94+
<td>
95+
<RuleID id="1aa695281c954513be3d003b93209312" />
96+
</td>
97+
<td>100911</td>
98+
<td>Generic Rules - Cookie Header Injection</td>
99+
<td>N/A</td>
100+
<td>Disabled</td>
101+
<td>This is a New Detection</td>
102+
</tr>
103+
<tr>
104+
<td>Cloudflare Managed Ruleset</td>
105+
<td>
106+
<RuleID id="d9f9e4f5bf11489da52dccb40f373b3f" />
107+
</td>
108+
<td>100905</td>
109+
<td>Generic Rules - NoSQL Injection</td>
110+
<td>N/A</td>
111+
<td>Disabled</td>
112+
<td>This is a New Detection</td>
113+
</tr>
114+
<tr>
115+
<td>Cloudflare Managed Ruleset</td>
116+
<td>
117+
<RuleID id="5a1897b714e044a887c0f3f078a0ed04" />
118+
</td>
119+
<td>100913</td>
120+
<td>Generic Rules - NoSQL Injection - 2</td>
121+
<td>N/A</td>
122+
<td>Disabled</td>
123+
<td>This is a New Detection</td>
124+
</tr>
125+
<tr>
126+
<td>Cloudflare Managed Ruleset</td>
127+
<td>
128+
<RuleID id="4d6fd28df4f1494e95e70d2c5d649624" />
129+
</td>
130+
<td>100907</td>
131+
<td>Generic Rules - Parameter Pollution</td>
132+
<td>N/A</td>
133+
<td>Disabled</td>
134+
<td>This is a New Detection</td>
135+
</tr>
136+
<tr>
137+
<td>Cloudflare Managed Ruleset</td>
138+
<td>
139+
<RuleID id="61181e3af5304f7396c7d01cfd1c674e" />
140+
</td>
141+
<td>100906</td>
142+
<td>Generic Rules - PHP Object Injection</td>
143+
<td>N/A</td>
144+
<td>Disabled</td>
145+
<td>This is a New Detection</td>
146+
</tr>
147+
<tr>
148+
<td>Cloudflare Managed Ruleset</td>
149+
<td>
150+
<RuleID id="ed5190bfbe1b45a6a645126334c88168" />
151+
</td>
152+
<td>100904</td>
153+
<td>Generic Rules - Prototype Pollution</td>
154+
<td>N/A</td>
155+
<td>Disabled</td>
156+
<td>This is a New Detection</td>
157+
</tr>
158+
<tr>
159+
<td>Cloudflare Managed Ruleset</td>
160+
<td>
161+
<RuleID id="3ec33bc5ac77495a9f55020e3ab43f7e" />
162+
</td>
163+
<td>100897</td>
164+
<td>Generic Rules - Prototype Pollution 2</td>
165+
<td>N/A</td>
166+
<td>Disabled</td>
167+
<td>This is a New Detection</td>
168+
</tr>
169+
<tr>
170+
<td>Cloudflare Managed Ruleset</td>
171+
<td>
172+
<RuleID id="c6d752c4909e4b7e8eff6c780d94ee22" />
173+
</td>
174+
<td>100903</td>
175+
<td>Generic Rules - Reverse Shell</td>
176+
<td>N/A</td>
177+
<td>Disabled</td>
178+
<td>This is a New Detection</td>
179+
</tr>
180+
<tr>
181+
<td>Cloudflare Managed Ruleset</td>
182+
<td>
183+
<RuleID id="caf37e7800bb4635bcc2eefcd5add8e3" />
184+
</td>
185+
<td>100909</td>
186+
<td>Generic Rules - Reverse Shell - 2</td>
187+
<td>N/A</td>
188+
<td>Disabled</td>
189+
<td>This is a New Detection</td>
190+
</tr>
191+
<tr>
192+
<td>Cloudflare Managed Ruleset</td>
193+
<td>
194+
<RuleID id="475d090baead467c88dfabbb565c78b0" />
195+
</td>
196+
<td>100898</td>
197+
<td>Generic Rules - SSJI NoSQL</td>
198+
<td>N/A</td>
199+
<td>Disabled</td>
200+
<td>This is a New Detection</td>
201+
</tr>
202+
<tr>
203+
<td>Cloudflare Managed Ruleset</td>
204+
<td>
205+
<RuleID id="f4c7f98934264c9c937eec1212b837a0" />
206+
</td>
207+
<td>100896</td>
208+
<td>Generic Rules - SSRF</td>
209+
<td>N/A</td>
210+
<td>Disabled</td>
211+
<td>This is a New Detection</td>
212+
</tr>
213+
<tr>
214+
<td>Cloudflare Managed Ruleset</td>
215+
<td>
216+
<RuleID id="efd01b814d144e90b36522b311c4fb00" />
217+
</td>
218+
<td>100895</td>
219+
<td>Generic Rules - Template Injection</td>
220+
<td>N/A</td>
221+
<td>Disabled</td>
222+
<td>This is a New Detection</td>
223+
</tr>
224+
<tr>
225+
<td>Cloudflare Managed Ruleset</td>
226+
<td>
227+
<RuleID id="00a9a0d663da4add95b863abd3ed0123" />
228+
</td>
229+
<td>100895A</td>
230+
<td>Generic Rules - Template Injection - 2</td>
231+
<td>N/A</td>
232+
<td>Disabled</td>
233+
<td>This is a New Detection</td>
234+
</tr>
235+
<tr>
236+
<td>Cloudflare Managed Ruleset</td>
237+
<td>
238+
<RuleID id="e58c0fffee4f4374bd37f2577501a1d9" />
239+
</td>
240+
<td>100912</td>
241+
<td>Generic Rules - XXE</td>
242+
<td>N/A</td>
243+
<td>Disabled</td>
244+
<td>This is a New Detection</td>
245+
</tr>
246+
<tr>
247+
<td>Cloudflare Managed Ruleset</td>
248+
<td>
249+
<RuleID id="ab09ba8d00eb4cdbb7a6a65ddc55cdb6" />
250+
</td>
251+
<td>100900</td>
252+
<td>Relative Paths - Anomaly Headers</td>
253+
<td>N/A</td>
254+
<td>Disabled</td>
255+
<td>This is a New Detection</td>
256+
</tr>
257+
</tbody>
258+
</table>

0 commit comments

Comments
 (0)