WAF Rule Set Update Announcement
| Name | waf.sig | ||
| Version | 1.2.37 | ||
| StoneOS Version | 5.5R2-W-1.1 or above, BDS 5.5R8-3.4 or above | ||
| Release Date | 2025-9-1 | New Rules (12) |
Rule ID | Rule Name | Rule Details |
| 1090410105 | Godzilla Webshell Access (Communication) | Click for Details | |
| 1090410106 | AntSword JSP Memshell | Click for Details | |
| 1070210508 | Yonyou BIP Unauthorized Access Vulnerability | Click for Details | |
| 1070210509 | CVE-2025-24016:Wazuh Remote Code Execution Vulnerability | Click for Details | |
| 1070210510 | Hanvon eFace Management Platform imgDownload.do Interface Arbitrary File Read Vulnerability | Click for Details | |
| 1070210511 | easySite CMS Velocity Template Injection Vulnerability | Click for Details | |
| 1070210512 | EnjoyIT CRM UploadFile Arbitrary File Upload Vulnerability | Click for Details | |
| 1070210513 | Inspur PS AllotOrderSrv.asmx Remote Code Execution Vulnerability | Click for Details | |
| 1070310238 | CVE-2024-4888:LiteLLM Arbitrary File Delete Vulnerability | Click for Details | |
| 1070310239 | CVE-2024-4889:LiteLLM Remote Code Execution Vulnerability | Click for Details | |
| 1070310240 | CVE-2024-4264:LiteLLM Remote Code Execution Vulnerability | Click for Details | |
| 1070310241 | CVE-2024-10099:ComfyUI Cross-Site Scripting Vulnerability | Click for Details | |