Forum Discussion

SCRN's avatar
Icon for Altostratus rankAltostratus
Oct 13, 2022

Malformed XML data

Hi all,  have xml request like below


ASM was detect this request as XML parser attack (Malformed XML data). In policy XML profile is Default
When delete all <value> and <field>, request is ok
It's by desing with default XML profile? is there a solution that would allow the request to be resolved given with this  <value> and  <field>. Thx

1 Reply

  • Do you not have the ability to learn this? Also, best practice is to never use a default profile if you need to use it. Also.. do you have a WSDL for the app? When creating a new XML profile, you can upload a WSDL to teach your ASM what unique values your app might have.