Forum Discussion
Matt_Dierick
Nov 10, 2013Employee
Hi,
You need to check all entities referring this attack. If you try an SQL injection on a parameter, you need to check "this" parameter or the wildcard. Staging (tightening as well on < 11.3) mode must be disabled.
If ASM sees the attack, that means signature works. Check where attacks occurs (parameter ...) and you will block it. I used to seeing this behavior when global staging is not finished --> mainly on parameters.
Let us know. Matt