Understanding Discrepancy in WAF Detection: Sending Data as 積極性 but Matched as Mu' in SQL Injection Attack Error
Hello Team,
I'm encountering an issue with the WAF Microsoft_DefaultRuleSet-2.1-MS-ThreatIntel-SQLI-99031001. When submitting a form using the POST method, specifically at the input [evaluationSheetModel.majorListModels[5].middleListModel.minorListModel.name], the value being sent is 積極性.
However, I'm receiving the following error:
[{""matchVariableName"":""PostParamValue:evaluationSheetModel.majorListModels[5].middleListModel.minorListModel.name"",""matchVariableValue"":""Mu'""}]"SQL Injection Attack: Common Injection Testing Detected,Matched Data: Mu' found within PostParamValue:evaluationSheetModel.majorListModels[5].middleListModel.minorListModel.name: Mu'
The data being sent is 積極性, but the matched data in the error message is Mu'.
Could you please assist me in understanding this discrepancy?
Thank you