This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

XG WAF does not detect SQLi in JSON payload

Hi,

I have hosted a web service protected by XG 210 WAF feature,

although related features are configured correctly, my test shows that simple sql injetion strings in JSON fields, pass through without being detected.

is there any known limitation in SOPHOS WAF for processing JSON payloads?

I have attached two screen shots, it shows that the SQLi string in variable fields triggered no detection, but moving it to some other random places in the JSON string will cause detection.

This thread was automatically locked due to age.

Parents

0 LuCar Toni over 6 years ago

Hi,

sounds interesting. You should address this with Sophos Support (DEV) to get an answer to this query. As far as i know, this should be considered in the Support. Could be some kind of limitation or could be some kind of exception in the WAF itself (modsecurity).
Cancel
Vote Up 0 Vote Down

Cancel
0 chacha over 6 years ago in reply to LuCar Toni

Thanks LuCAR, I will follow this with support.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 chacha over 6 years ago in reply to LuCar Toni

Thanks LuCAR, I will follow this with support.
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data