Forum Discussion

Nimbostratus

Sep 04, 2013

BIG-IP false SQL injection alarm when trying to update a Wordpress page

Hi all, first of all, I am not sure if I ask this question in the right forum. Please direct me to the right one if this is not the place to ask this question. I host my Wordpress-based website ...

security

boneyard

MVP

Sep 05, 2013

200002149; SQL-INJ expressions like "and 1=1" (5). so it somewhere finds a string that looks like and 1=1 which is a common trick in SQL injection attacks.

the ASM is in front of your webserver, so it gets the data send to the webserver. so that is before PHP does something with it, but php probably did create the page where you entered the data.

as this signature is parameter based you could also just exclude it for the content parameter and have it active on all other parameters.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)