Scheduled changes
Subscribe to RSS
WAF Release - Scheduled changes for 2025-09-08
WAF Release - Scheduled changes for 2025-09-08
| Announcement Date | Release Date | Release Behavior | Legacy Rule ID | Rule ID | Description | Comments |
|---|---|---|---|---|---|---|
| 2025-09-01 | 2025-09-08 | Log | 100007D | Command Injection - Common Attack Commands Args | Beta detection. This will be merged into the original rule "Command Injection - Common Attack Commands" (ID: | |
| 2025-09-01 | 2025-09-08 | Log | 100617 | Next.js - SSRF - CVE:CVE-2025-57822 | This is a New Detection | |
| 2025-09-01 | 2025-09-08 | Log | 100659_BETA | Common Payloads for Server-Side Template Injection - Beta | Beta detection. This will be merged into the original rule "Common Payloads for Server-Side Template Injection" (ID: | |
| 2025-09-01 | 2025-09-08 | Log | 100824B | CrushFTP - Remote Code Execution - CVE:CVE-2025-54309 - 3 | This is a New Detection | |
| 2025-09-01 | 2025-09-08 | Log | 100848 | ScriptCase - Auth Bypass - CVE:CVE-2025-47227 | This is a New Detection | |
| 2025-09-01 | 2025-09-08 | Log | 100849 | ScriptCase - Command Injection - CVE:CVE-2025-47228 | This is a New Detection | |
| 2025-09-01 | 2025-09-08 | Log | 100872 | WordPress:Plugin:InfiniteWP Client - Missing Authorization - CVE:CVE-2020-8772 | This is a New Detection | |
| 2025-09-01 | 2025-09-08 | Log | 100873 | Sar2HTML - Command Injection - CVE:CVE-2025-34030 | This is a New Detection | |
| 2025-09-01 | 2025-09-08 | Log | 100875 | Zhiyuan OA - Remote Code Execution - CVE:CVE-2025-34040 | This is a New Detection |
For other WAF updates, refer to the changelog.
Was this helpful?
- Resources
- API
- New to Cloudflare?
- Directory
- Sponsorships
- Open Source
- Support
- Help Center
- System Status
- Compliance
- GDPR
- Company
- cloudflare.com
- Our team
- Careers
- © 2025 Cloudflare, Inc.
- Privacy Policy
- Terms of Use
- Report Security Issues
- Trademark