WAF not blocking sql injection



How can I check WAF sql injection implementation rule?

We received the request below and WAF sql injection rule didn't block it.

a piece of the request body:

{"id":"'nvOpzp; AND 1=1 OR (<'\">iKO)),"}


preguntada hace un año657 visualizaciones
2 Respuestas

What rules do you currently have in place?
For the AWS Managed Ruleset, the "AWSManagedRulesSQLiRuleSet" can be set to protect against SQL injection.

Also note that even matching requests will not be blocked unless the rule is set to block instead of count.

profile picture
respondido hace un año

Hi Riku, thanks for you answer.

I have the rule AWSManagedRulesSQLiRuleSet active and also blocking.

I also check in WAF log and the request body is less than 8KB and requestBodySizeInspectedByWAF is equals to requestBodySize, so WAF is checking and allowing the request.

Shouldn't this request be blocked?


respondido hace un año

No has iniciado sesión. Iniciar sesión para publicar una respuesta.

Una buena respuesta responde claramente a la pregunta, proporciona comentarios constructivos y fomenta el crecimiento profesional en la persona que hace la pregunta.

Pautas para responder preguntas