Bypass the character for Evasion technique Detected violation

Question

Hi,I need help to bypass or allow %", character which has triggered the Detection violation(Bad unescape) in JSON POST Data. This is legitimate request and i don't see this request on learning suggestion. I am able to find with the help support ID provided by user under the event logs.

youssef1 · Answer

Hi,&nbsp;Easy was, create an URL where the violation is trigged:&nbsp;Security&nbsp;››&nbsp;Application Security : URLs : Allowed URLs : Allowed HTTP URLs&nbsp;››&nbsp;New Allowed HTTP URL... (explicit).&nbsp;Then create parameter needed where the violation is trigged (In the URL created before):&nbsp;&nbsp;Then allow % in this parameter.&nbsp;Don't forget to apply policies.&nbsp;Let me know if it's clear for you.&nbsp;regards

rahulve · Answer

This error appeared for JSON Content not on the uRL . we already have wildcard parameter with % allowed in user-input.

youssef1 · Answer

Hi,&nbsp;I think you can solve easly your problem by specifying the type of parameter.In your case it's json, did you do it?More, can you see the entire blocage page logs?&nbsp;regards&nbsp;

helenio · Answer

Hi,&nbsp;I have the same issue.I have to allow % that is Body of a POST request, did someone solved the issue ?

Forum Discussion

Bypass the character for Evasion technique Detected violation

Recent Discussions

TS Declarations for DNS

APM file and registry key date check 8 days old

SSL bridging without SSL proxy forward

Should config via cli rather than gui?

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Related Content

WAF evasion techniques for Command Injection

Mitigating new HTTP Request Smuggling techniques with BIG-IP ASM

Credential Stuffing Tools and Techniques

Rate limiting GraphQL API query using iRule and Advanced WAF Violation

Separating False Positives from Legitimate Violations

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS