I’m trying to figure out why Cloudflare is blocking a POST request containing a parameter with the string value “TR HIGH”. Cloudflare throws a “404 bad request error” and the blocked page does not show on the firewall blocked requests list.
This only happens with that very specific parameter value. If the parameter is changed to lower case or anything gets added between the two words, it works fine.
Is this specific string related to some sort of vulnerability?