Questionable blocking
Blocks the exploit in https://www.exploit-db.com/exploits/44943, but if I change "select ..." to "insert into ...", the request is not blocked, which seems suspiciously lax. Another rule group I tested blocks also the latter request.
- Leave a Comment |
- Mark review as helpful
Blocked Jetpack & XMLRPC
We found that this wasn't suitable for clients who wanted to use Jetpack as it blocked the XMLRPC port. This could have been a combination issue with Cloudflare fronting the site, but didn't test further to find out.
showing 1 - 2