Web Attacks
Overview
A web attack is an attack on a device used to access the Internet or on devices on the Internet, like web servers. Common web attacks include SQL injection, cross-site scripting (XSS), and cross-site request forgery (XSRF) attacks.
As long as Web Application Firewall (WAF) to detect 14 of them and Host Security Service (HSS) are both enabled, SA professional edition can detect 38 types of web attacks. HSS is required for 3 of them, and WAF is required for 14 of them. The standard edition can detect 19 types of web attacks, and the basic edition does not support web attack detection.
Suggestion
If SA detects a web attack, an attacker is attempting to exploit a vulnerability in the web application. The severity of this type of threat is Medium or lower. You are advised to perform the following operations:
- Check the web application logic for vulnerabilities.
- Purchase WAF.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot