Hi all, have xml request like below ASM was detect this request as XML parser attack (Malformed XML data). In policy XML profile is DefaultWhen delete all <value> and <field>, request is okBIIt's by desing with default XML profile? is there a solution that would allow the request to be resolved given with this <value> and <field>. Thx

Do you not have the ability to learn this? Also, best practice is to never use a default profile if you need to use it. Also.. do you have a WSDL for the app? When creating a new XML profile, you can upload a WSDL to teach your ASM what unique values your app might have.

Forum Discussion

SCRN

Altostratus

Oct 13, 2022

Malformed XML data

Hi all, have xml request like below

ASM was detect this request as XML parser attack (Malformed XML data). In policy XML profile is Default
When delete all <value> and <field>, request is ok
BI
It's by desing with default XML profile? is there a solution that would allow the request to be resolved given with this <value> and <field>. Thx

AubreyKingF5
Moderator
Oct 17, 2022
Do you not have the ability to learn this? Also, best practice is to never use a default profile if you need to use it. Also.. do you have a WSDL for the app? When creating a new XML profile, you can upload a WSDL to teach your ASM what unique values your app might have.