Chapter content15.3.1. Deny Rule Group – (default) SQL Injection (SQLi) in Parameter Value15.3.2. Deny Rule Group – (default) SQL Injection (SQLi) in Header Value15.3.3. Deny Rule Group – (default) Cross-Site Scripting (XSS) in Parameter Value15.3.4. Deny Rule Group – (default) Cross-Site Scripting (XSS) in Header Value15.3.5. Deny Rule Group – (default) Cross-Site Scripting (XSS) in Path15.3.6. Deny Rule Group – (default) Template Injection15.3.7. Deny Rule Group – (default) HTML Injection in Parameter Value15.3.8. Deny Rule Group – (default) HTML Injection in Header Value15.3.9. Deny Rule Group – (default) HTML Injection in Path15.3.10. Deny Rule Group – (default) UNIX Command Injection in Parameter Value15.3.11. Deny Rule Group – (default) UNIX Command Injection in Header Value15.3.12. Deny Rule Group – (default) Windows Command Injection in Parameter Value15.3.13. Deny Rule Group – (default) Windows Command Injection in Header Value15.3.14. Deny Rule Group – (default) LDAP Injection in Parameter Value15.3.15. Deny Rule Group – (default) LDAP Injection in Header Value15.3.16. Deny Rule Group – (default) PHP Injection in Parameter Value15.3.17. Deny Rule Group – (default) PHP Injection in Header Value15.3.18. Deny Rule Group – (default) Object Graph Navigation Library injection 15.3.19. Deny Rule Group – (default) Insecure Direct Object Reference in Parameter Value15.3.20. Deny Rule Group – (default) Insecure Direct Object Reference in Path15.3.21. Deny Rule Group - (default) NoSQL Injection in Parameter Name15.3.22. Deny Rule Group - (default) NoSQL Injection in Parameter Value15.3.23. Deny Rule Group - (default) NoSQL Injection in Header Value15.3.24. Deny Rule Group – (default) Parameter Name Sanity15.3.25. Deny Rule Group – (default) Parameter Value Sanity15.3.26. Deny Rule Group – (default) Header Name Sanity15.3.27. Deny Rule Group – (default) Header Value Sanity15.3.28. Deny Rule Group – (default) Path Sanity15.3.29. Deny Rule Group – (default) Encoding and Conversion Exploits in Parameter Value15.3.30. Deny Rule Group – (default) Encoding and Conversion Exploits in Header Value15.3.31. Deny Rule Group – (default) HTTP Response Splitting15.3.32. Deny Rule Group – (default) HTTP Parameter Pollution15.3.33. Deny Rule Group – (default) Automated Scanning