Forum Discussion

Nimbostratus

Jun 01, 2016

SQL Injection marked as informational

Hi Guys, I'm not sure why but ASM is picking up the attack signature as SQL Injection but marking it as informational. Any ideas?

ASM Advanced WAF

security

nathe

Cirrocumulus

Jun 01, 2016

Paul,

Is the Request Informational because it's a legal request i.e. the Green Tick. This would suggest the signature(s) are in Staging. Once out of Staging the request becomes Illegal and the Severity should change accordingly.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

SQL Injection marked as informational

AppWorld 2026: Save the Date and Join Our Community In Person!

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

iRule, Traffic Policy or Re-Write Policy

ASM subsystem error

F5 iRule Reverse Proxy, rewrite, redirect

Ssl profile different in case of retry

vlan associated with 2 selfIP on different subnets

Related Content

WAF evasion techniques for Command Injection

Serverside SNI injection iRule

Mitigating OWASP Web Application Risk: Injection exploits using F5 BIG-IP

AI Security : Prompt Injection and Insecure Output Handling.

External Monitor Information and Templates

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS