New WAF Objects: [total: 7]
==================================
Signature:
    ID: '708557'
    Name: 'CVE-2025-6023: Grafana - Open Redirect'
    Attack: Open Redirect - Blocking
    Attack Class: Open redirect
    Dictionary: Recommended for Blocking for Web Applications
    Pattern: part="/user/auth-tokens/rotate", rgxp="redirectTo=[\s\S]{0,300}#"
    Policy: Recommended Signatures Policy for Web Applications
    Search In:
    - url-and-parameters

Signature:
    ID: '708556'
    Name: 'CVE-2026-8732: Unauthenticated Administrator Account Creation in WP Maps
        Pro'
    Attack: Authentication Bypass - Blocking
    Attack Class: Authentication Bypass
    Dictionary: Recommended for Blocking for Web Applications
    Pattern: part="/wp-admin/admin-ajax.php", part="action=wpgmp_temp_access_ajax",
        part="check_temp=false"
    Policy: Recommended Signatures Policy for Web Applications
    Search In:
    - url-and-parameters

Signature:
    ID: '708555'
    Name: 'CVE-2026-45247: Mirasvit Full Page Cache Warmer For Magento - PHP Object
        Deserialization'
    Attack: Remote Command Execution - Blocking
    Attack Class: Remote Command Execution
    Dictionary: Recommended for Blocking for Web Applications
    Pattern: part="Cookie", part="CacheWarmer=CacheWarmer:", rgxp="CacheWarmer\=CacheWarmer:(Tz|YT|Qz)[A-Za-z0-9+\x2F]+\={0,2}"
    Policy: Recommended Signatures Policy for Web Applications
    Search In:
    - headers

Signature:
    ID: '708554'
    Name: cPanel - Reflected XSS 2
    Attack: Cross-Site Scripting - Blocking
    Attack Class: Cross-Site Scripting
    Dictionary: Recommended for Blocking for Web Applications
    Pattern: part="/mailman/", part="</script>"
    Policy: Recommended Signatures Policy for Web Applications
    Search In:
    - url-and-parameters

Signature:
    ID: '708553'
    Name: cPanel - Reflected XSS
    Attack: Cross-Site Scripting - Blocking
    Attack Class: Cross-Site Scripting
    Dictionary: Recommended for Blocking for Web Applications
    Pattern: part="/mailman/", part="mpidentity", rgxp="mpidentity=.{0,30}<\/"
    Policy: Recommended Signatures Policy for Web Applications
    Search In:
    - url-and-parameters

Signature:
    ID: '708552'
    Name: 'CVE-2026-9082 : Drupal Core - SQLi 2'
    Attack: SQL Injection - Blocking
    Attack Class: SQL Injection
    Dictionary: Recommended for Blocking for Web Applications
    Pattern: part="/user/login", part="_format=json", part="pass", rgxp="name\.\d+\=\w+[\s\S]{1,20}name\.\d+[^=]"
    Policy: Recommended Signatures Policy for Web Applications
    Search In:
    - url-and-parameters

Signature:
    ID: '708551'
    Name: 'CVE-2026-9082 : Drupal Core - SQLi'
    Attack: SQL Injection - Blocking
    Attack Class: SQL Injection
    Dictionary: Recommended for Blocking for Web Applications
    Pattern: part="/jsonapi/node/article", part="[condition][operator]=IN", rgxp="\[condition\]\[value\]\[(?![0-9]+\])[^\]]+\]"
    Policy: Recommended Signatures Policy for Web Applications
    Search In:
    - url-and-parameters