February 01, 2017 4:53PM
Protecting everyone from WordPress Content Injection
WordPress
WAF
Vulnerabilities
Today a severe vulnerability was announced by the WordPress Security Team that allows unauthenticated users to change content on a site using unpatched (below version 4.7.2) WordPress....
July 18, 2016 4:26PM
CloudFlare sites protected from httpoxy
Attacks
Bugs
Vulnerabilities
Security
API
We have rolled out automatic protection for all customers for the the newly announced vulnerability called httpoxy....
July 03, 2015 2:41PM
Blue Light Special: Ensuring fast global configuration changes
Speed & Reliability
Reliability
DNS
WAF
Raspberry Pi
CloudFlare operates a huge global network of servers that proxy our customers' web sites, operate as caches, inspect requests to ensure they are not malicious, deflect DDoS attacks and handle one of the largest authoritative DNS systems in the world....
April 15, 2015 2:48PM
Protection against critical Windows vulnerability (CVE-2015-1635)
Vulnerabilities
WAF Rules
WAF
A few hours ago, more details surfaced about the MS15-034 vulnerability. Simple PoC code has been widely published that will hang a Windows web server if sent a request with an HTTP Range header containing large byte offsets....