I simulated an attack from my laptop with managed rules enable on Cloudflare. Under firewall > activity log I noticed the value of the Query string was empty query string ideally it should show the actually payload fired from my machine.
Thank you for asking.
May I ask if you are using a paid or free Cloudflare plan?
I remember I saw it working.
Also, I remember when I tried using “NULL” in a query, and having a Firewall Rule where if URI contains NULL with the “block” action. And it showed under Firewall Events (Overview tab).
I might not be sure, if you are using Pro plan and if you enabled WAF and Manager WAF Rules, configured it, it may trigger some specific SQLi rules while the Query String would stay empty? → I am not sure if that is the case with your example, but …
This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.