WAF Rule Set Update Announcement
| Name | waf.sig | ||
| Version | 1.2.31 | ||
| StoneOS Version | 5.5R2-W-1.1 or above, BDS 5.5R8-3.4 or above | ||
| Release Date | 2025-6-5 | New Rules (3) |
Rule ID | Rule Name | Rule Details |
| 1070210483 | Weaver E-Cology v10 H2 Remote Command Exectuion Vulnerability | Click for Details | |
| 1070210484 | Weaver E-Cology deleteUserRequestInfoByXml XML Enternal Entity Injection Vulnerability | Click for Details | |
| 1060310002 | Directory Traversal Attack(Base64 encoded forms) In Request URI | Click for Details | Updated Rules (2) |
Rule ID | Description | Ruel Details |
| 1070010006 | CVE-2007-2897: Microsoft IIS DOS Device Name Abuse | Click for Details | |
| 1070110013 | Apache Struts 2 Session Tamper | Click for Details | |