cloudflare · vs-mg · Oct 3, 2025 · Oct 3, 2025
@@ -0,0 +1,258 @@
+---
+title: "WAF Release - 2025-10-03"
+description: Cloudflare WAF managed rulesets 2025-10-03 release
+date: 2025-10-03
+---
+
+import { RuleID } from "~/components";
+
+**Managed Ruleset Updated**
+
+This update introduces 21 new detections in the Cloudflare Managed Ruleset (all currently set to Disabled mode to preserve remediation logic and allow quick activation if needed). The rules cover a broad spectrum of threats - SQL injection techniques, command and code injection, information disclosure of common files, URL anomalies, and cross-site scripting.
+
+<table style="width: 100%">
+  <thead>
+    <tr>
+      <th>Ruleset</th>
+      <th>Rule ID</th>
+      <th>Legacy Rule ID</th>
+      <th>Description</th>
+      <th>Previous Action</th>
+      <th>New Action</th>
+      <th>Comments</th>
+    </tr>
+  </thead>
+  <tbody>
+    <tr>
+      <td>Cloudflare Managed Ruleset</td>
+      <td>
+        <RuleID id="0d02c2fb14eb4cec9c2e2b58d61fac74" />
+      </td>
+      <td>100902</td>
+      <td>Generic Rules - Command Execution - 2</td>
+      <td>N/A</td>
+      <td>Disabled</td>
+      <td>This is a New Detection</td>
+    </tr>
+    <tr>
+      <td>Cloudflare Managed Ruleset</td>
+      <td>
+        <RuleID id="c3079865ce9a41368657026b514aeeb8" />
+      </td>
+      <td>100908</td>
+      <td>Generic Rules - Command Execution - 3</td>
+      <td>N/A</td>
+      <td>Disabled</td>
+      <td>This is a New Detection</td>
+    </tr>
+    <tr>
+      <td>Cloudflare Managed Ruleset</td>
+      <td>
+        <RuleID id="107ae2922b654bb28df7ca978d46a6f4" />
+      </td>
+      <td>100910</td>
+      <td>Generic Rules - Command Execution - 4</td>
+      <td>N/A</td>
+      <td>Disabled</td>
+      <td>This is a New Detection</td>
+    </tr>
+    <tr>
+      <td>Cloudflare Managed Ruleset</td>
+      <td>
+        <RuleID id="68bdb75ae6d24e139a83e5731bd0a329" />
+      </td>
+      <td>100915</td>
+      <td>Generic Rules - Command Execution - 5</td>
+      <td>N/A</td>
+      <td>Disabled</td>
+      <td>This is a New Detection</td>
+    </tr>
+    <tr>
+      <td>Cloudflare Managed Ruleset</td>
+      <td>
+        <RuleID id="ea04bb580f7d400386c7dc1d5e51450a" />
+      </td>
+      <td>100899</td>
+      <td>Generic Rules - Content-Type Abuse</td>
+      <td>N/A</td>
+      <td>Disabled</td>
+      <td>This is a New Detection</td>
+    </tr>
+    <tr>
+      <td>Cloudflare Managed Ruleset</td>
+      <td>
+        <RuleID id="233364f656ff42b8acc41dcd7996012f" />
+      </td>
+      <td>100914</td>
+      <td>Generic Rules - Content-Type Injection</td>
+      <td>N/A</td>
+      <td>Disabled</td>
+      <td>This is a New Detection</td>
+    </tr>
+    <tr>
+      <td>Cloudflare Managed Ruleset</td>
+      <td>
+        <RuleID id="1aa695281c954513be3d003b93209312" />
+      </td>
+      <td>100911</td>
+      <td>Generic Rules - Cookie Header Injection</td>
+      <td>N/A</td>
+      <td>Disabled</td>
+      <td>This is a New Detection</td>
+    </tr>
+    <tr>
+      <td>Cloudflare Managed Ruleset</td>
+      <td>
+        <RuleID id="d9f9e4f5bf11489da52dccb40f373b3f" />
+      </td>
+      <td>100905</td>
+      <td>Generic Rules - NoSQL Injection</td>
+      <td>N/A</td>
+      <td>Disabled</td>
+      <td>This is a New Detection</td>
+    </tr>
+    <tr>
+      <td>Cloudflare Managed Ruleset</td>
+      <td>
+        <RuleID id="5a1897b714e044a887c0f3f078a0ed04" />
+      </td>
+      <td>100913</td>
+      <td>Generic Rules - NoSQL Injection - 2</td>
+      <td>N/A</td>
+      <td>Disabled</td>
+      <td>This is a New Detection</td>
+    </tr>
+    <tr>
+      <td>Cloudflare Managed Ruleset</td>
+      <td>
+        <RuleID id="4d6fd28df4f1494e95e70d2c5d649624" />
+      </td>
+      <td>100907</td>
+      <td>Generic Rules - Parameter Pollution</td>
+      <td>N/A</td>
+      <td>Disabled</td>
+      <td>This is a New Detection</td>
+    </tr>
+    <tr>
+      <td>Cloudflare Managed Ruleset</td>
+      <td>
+        <RuleID id="61181e3af5304f7396c7d01cfd1c674e" />
+      </td>
+      <td>100906</td>
+      <td>Generic Rules - PHP Object Injection</td>
+      <td>N/A</td>
+      <td>Disabled</td>
+      <td>This is a New Detection</td>
+    </tr>
+    <tr>
+      <td>Cloudflare Managed Ruleset</td>
+      <td>
+        <RuleID id="ed5190bfbe1b45a6a645126334c88168" />
+      </td>
+      <td>100904</td>
+      <td>Generic Rules - Prototype Pollution</td>
+      <td>N/A</td>
+      <td>Disabled</td>
+      <td>This is a New Detection</td>
+    </tr>
+    <tr>
+      <td>Cloudflare Managed Ruleset</td>
+      <td>
+        <RuleID id="3ec33bc5ac77495a9f55020e3ab43f7e" />
+      </td>
+      <td>100897</td>
+      <td>Generic Rules - Prototype Pollution 2</td>
+      <td>N/A</td>
+      <td>Disabled</td>
+      <td>This is a New Detection</td>
+    </tr>
+    <tr>
+      <td>Cloudflare Managed Ruleset</td>
+      <td>
+        <RuleID id="c6d752c4909e4b7e8eff6c780d94ee22" />
+      </td>
+      <td>100903</td>
+      <td>Generic Rules - Reverse Shell</td>
+      <td>N/A</td>
+      <td>Disabled</td>
+      <td>This is a New Detection</td>
+    </tr>
+    <tr>
+      <td>Cloudflare Managed Ruleset</td>
+      <td>
+        <RuleID id="caf37e7800bb4635bcc2eefcd5add8e3" />
+      </td>
+      <td>100909</td>
+      <td>Generic Rules - Reverse Shell - 2</td>
+      <td>N/A</td>
+      <td>Disabled</td>
+      <td>This is a New Detection</td>
+    </tr>
+    <tr>
+      <td>Cloudflare Managed Ruleset</td>
+      <td>
+        <RuleID id="475d090baead467c88dfabbb565c78b0" />
+      </td>
+      <td>100898</td>
+      <td>Generic Rules - SSJI NoSQL</td>
+      <td>N/A</td>
+      <td>Disabled</td>
+      <td>This is a New Detection</td>
+    </tr>
+    <tr>
+      <td>Cloudflare Managed Ruleset</td>
+      <td>
+        <RuleID id="f4c7f98934264c9c937eec1212b837a0" />
+      </td>
+      <td>100896</td>
+      <td>Generic Rules - SSRF</td>
+      <td>N/A</td>
+      <td>Disabled</td>
+      <td>This is a New Detection</td>
+    </tr>
+    <tr>
+      <td>Cloudflare Managed Ruleset</td>
+      <td>
+        <RuleID id="efd01b814d144e90b36522b311c4fb00" />
+      </td>
+      <td>100895</td>
+      <td>Generic Rules - Template Injection</td>
+      <td>N/A</td>
+      <td>Disabled</td>
+      <td>This is a New Detection</td>
+    </tr>
+    <tr>
+      <td>Cloudflare Managed Ruleset</td>
+      <td>
+        <RuleID id="00a9a0d663da4add95b863abd3ed0123" />
+      </td>
+      <td>100895A</td>
+      <td>Generic Rules - Template Injection - 2</td>
+      <td>N/A</td>
+      <td>Disabled</td>
+      <td>This is a New Detection</td>
+    </tr>
+    <tr>
+      <td>Cloudflare Managed Ruleset</td>
+      <td>
+        <RuleID id="e58c0fffee4f4374bd37f2577501a1d9" />
+      </td>
+      <td>100912</td>
+      <td>Generic Rules - XXE</td>
+      <td>N/A</td>
+      <td>Disabled</td>
+      <td>This is a New Detection</td>
+    </tr>
+    <tr>
+      <td>Cloudflare Managed Ruleset</td>
+      <td>
+        <RuleID id="ab09ba8d00eb4cdbb7a6a65ddc55cdb6" />
+      </td>
+      <td>100900</td>
+      <td>Relative Paths - Anomaly Headers</td>
+      <td>N/A</td>
+      <td>Disabled</td>
+      <td>This is a New Detection</td>
+    </tr>
+  </tbody>
+</table>