Imperva Cyber Community

 View Only
  • 1.  Can wildcards be used in URL Prefixes in exceptions?

    Posted 15 days ago
    I have reviewed the help document and not found if can use Wildcards in URL prefixes in exceptions.

    For our exceptions we attempt to make them as narrow as possible. A current example getting a Cross Site Scripting block that customer is asking for an exception on.

    Violated item= URL: /api/catalogproduct/138096/catalogproductdetail  with each block having a different order number after the URL: /api/catalogproduct/ . So I have a changing value in the full URL.

    In my exception can I use a wildcard to match this changing value so if Using HTTP Request URL Match: URL Prefixes - Operation: At Least One would this work and be valid?

    /api/catalogproduct/*/catalogproductdetail

    or   */catalogproductdetail

    Would be limited in this case to /api/catalogproduct/



    Please bear with me if this is a simple answer or I have overlooked this in my searches.
    #On-PremisesWAF(formerlySecuresphere)

    ------------------------------
    [Scott] Brandt
    Security Engineer
    Taylor Corporation
    North Mankato [MN]
    ------------------------------


  • 2.  RE: Can wildcards be used in URL Prefixes in exceptions?

    Posted 5 days ago

    Hi there,

    I got the following response from the team:

    Hey Scott, this is a really good question. This actually a classic scenario where a little known feature is a perfect match.   It's called a URL to Parameter plugin and it is a one-sweep fix to get rid of a dynamic part of a URL. in your case a specific product ID within a URL. This will fix how Imperva sees these URLs everywhere, not just a specific exception page. check this help page out https://docs.imperva.com/bundle/v14.7-database-activity-monitoring-user-guide/page/3650.htm



    ------------------------------
    Sarah Lamont
    Digital Community Manager
    ------------------------------