Forum Discussion

Nimbostratus

Feb 19, 2013

Filename is seeing as parameter and applied a SQL Injection signature

Hi, the ASM (9.4.4) have a false positive by detecting the filenames as parameter and applying the following SQL injection signature: False Positive: SQL-INJ "--" (SQL comment) (Parameter) ...

app sec

BIG-IP Access Policy Manager (APM)

security

Torti

Cirrus

Feb 21, 2013

Hi,

why contains the parameter filename the complete path? It should only contain the name.

How is the detailed violation?

Shouldn't be 'file1' the binary?

Yes, you can set filename as parameter, to disable signature scanning. Then, only some base signatures are scanned.

But you cannot disable the complete signature scanning for a single parameter.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

Community Articles

application delivery

CIS

container ingress services

devops

Gateway Fabric

F5 Architecture Track Sessions - AppWorld 2026

DevCentral News

announcement

Appworld2026

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Filename is seeing as parameter and applied a SQL Injection signature

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

Question/Advice on iRule Remediating the Telerik (Unsafe Reflection Vulnerability (CVE-2025-3600)

Resetting to Factory Default

sslprovide (--f5 ssl) does not generate CLIENT/SERVER_TRAFFIC_SECRET on server-side TLS traffic

Issue with IIS and Client Component Service Load balancing

Syslog Filter Configuration for Separating Audit and LTM logs.

Related Content

Mitigating JSON-based SQL injection with BIG-IP ASM / Advanced WAF Attack Signatures

Wildcard Parameter signature attack

WAF evasion techniques for Command Injection

Serverside SNI injection iRule

November Security Research Update: Newly Released Attack Signatures

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS