Changelog

New updates and improvements at Cloudflare.

Subscribe to RSS
View all RSS feeds

← Back to all posts

WAF Release - Scheduled changes for 2025-09-08

Sep 01, 2025

WAF

Announcement Date	Release Date	Release Behavior	Legacy Rule ID	Rule ID	Description	Comments
2025-09-01	2025-09-08	Log	100007D	...963d7afc	Command Injection - Common Attack Commands Args	Beta detection. This will be merged into the original rule "Command Injection - Common Attack Commands" (ID: ...28345b9b )
2025-09-01	2025-09-08	Log	100617	...8230a75b	Next.js - SSRF - CVE:CVE-2025-57822	This is a New Detection
2025-09-01	2025-09-08	Log	100659_BETA	...a22dabf1	Common Payloads for Server-Side Template Injection - Beta	Beta detection. This will be merged into the original rule "Common Payloads for Server-Side Template Injection" (ID: ...a28a42c4 )
2025-09-01	2025-09-08	Log	100824B	...b416b7ca	CrushFTP - Remote Code Execution - CVE:CVE-2025-54309 - 3	This is a New Detection
2025-09-01	2025-09-08	Log	100848	...5db1fa6b	ScriptCase - Auth Bypass - CVE:CVE-2025-47227	This is a New Detection
2025-09-01	2025-09-08	Log	100849	...2c62d330	ScriptCase - Command Injection - CVE:CVE-2025-47228	This is a New Detection
2025-09-01	2025-09-08	Log	100872	...ef971afd	WordPress:Plugin:InfiniteWP Client - Missing Authorization - CVE:CVE-2020-8772	This is a New Detection
2025-09-01	2025-09-08	Log	100873	...bab19b0b	Sar2HTML - Command Injection - CVE:CVE-2025-34030	This is a New Detection
2025-09-01	2025-09-08	Log	100875	...f24c0fbe	Zhiyuan OA - Remote Code Execution - CVE:CVE-2025-34040	This is a New Detection