WAF Rule Set Update Announcement
| Name | waf.sig | ||
| Version | 1.2.29 | ||
| StoneOS Version | 5.5R2-W-1.1 or above, BDS 5.5R8-3.4 or above | ||
| Release Date | 2025-5-8 | New Rules (8) |
Rule ID | Rule Name | Rule Details |
| 1070210476 | CVE-2025-3102:WordPress Plugin SureTriggers Authorization Bypass Vulnerability | Click for Details | |
| 1070210477 | CVE-2025-39436:WordPress Plugin I Draw Arbitrary File Upload Vulnerability | Click for Details | |
| 1070210478 | Jeecg-Boot getDictItemsByTable SQL Injection Vulnerability | Click for Details | |
| 1070210479 | CVE-2022-45205,CVE-2022-47105:Jeecg-Boot queryTableData SQL Injection Vulnerability | Click for Details | |
| 1070210480 | CVE-2023-1454,CVE-2023-41542:Jeecg-Boot jmreport qurestSql SQL Injection Vulnerability | Click for Details | |
| 1070210481 | Jeecg-Boot jmreport SSTI Vulnerability | Click for Details | |
| 1070210482 | CVE-2024-48307:Jeecg-Boot getTotalData SQL Injection Vulnerability | Click for Details | |
| 1070310224 | CVE-2025-3248:Langflow Remote Code Execution Vulnerability | Click for Details | Updated Rules (3) |
Rule ID | Description | Ruel Details |
| 1070210339 | CVE-2021-38314:WordPress Redux Sensitive Infomation Leakage Vulnerability | Click for Details | |
| 1070210399 | CVE-2019-25213:WordPress Plugin Advanced Access Manager aam-media Arbitrary File Reading Vulnerability | Click for Details | |
| 1070210357 | CVE-2023-4450,CVE-2023-40989:JEECG-BOOT Template Injection Vulnerability | Click for Details | |