Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions
Custom Alert Banner

F5 AppWorld 2024 session proposal deadline extended to Friday, December 8th!

False Positive on AWS WAF F5 Managed Rule F5#OWASP.rule_SQL_INJ_SELECT_DATABASE____Parameter__AllQue

iranthawow
Nimbostratus
Nimbostratus

‎26-Apr-2023 16:52

Hello

 

We have setup AWS WAF2 with F5 OWASP Subscription and currently getting some False Positive requests Blocks. We need support from F5support.

We recently enabled "F5-OWASP_Managed" rules set on a AWS WAFv2 and Once we did we started seeing a false positive for an API call with the following rule...
F5#OWASP.rule_SQL_INJ_SELECT_DATABASE____Parameter__AllQueryArguments_Body

After some further investigation we discovered the rule is tripped when we make a request to export data to a CSV file.

Can you give us more background information on exactly what this rule is doing and how we should go about avoiding this false positive?

 

Regards
Irantha

Labels:
0 Kudos
1 REPLY 1

Leslie_Hubertus
Community Manager
Community Manager

‎01-May-2023 16:26

Hi @iranthawow - I'm featuring your post in this week's Community Highlights article to try to boost visibility so someone will answer. 

0 Kudos
Copyright © 2023 Khoros, LLC