(default) Windows Command Injection in Parameter Value
Deny Rule Group – (default) Windows Command Injection in Parameter Value

WINCMD_PARAM_VALUE

  • The group contains deny rules preventing Windows command injections through HTTP parameter values.

Included Deny Rules

Rule name
Basic
Standard
Strict
(default WIN_015a) Windows command injection in quoted context in parameter value
Icon - ON
Icon - ON
(default WIN_020a) Windows command injection in unquoted context in parameter value
Icon - ON