Fortinet Document Library

Version:


Table of Contents

5.3.1
Download PDF
Copy Link

0202006004 (security: waf signature)

This log ID relates to a security incident involving WAF signature attack.

 

Message:Find Attack ID: 100*** Desc: "Web Application Joomla! SQL Injection Attempt -- category.php catid SELECT" Module: "SQL Injection" Check Type: "Coldfusion Injection"

Meaning: A web generic attack was detected.

Priority: Alert

0202006005 (security: http protocol constraint)

This log ID relates to a security incident involving HTTP protocol constraint rule.

 

Message:"Attack ID: 101*** Desc: "HTTP Method Violation" Module: "HTTP Protocol Constraint" Check Type: "Request Method Rule""

Meaning: A violation is triggered due to a match of one or more of the HTTP protocol constraint options.

Priority: Alert

0202006006 (security: waf sql injection)

This log ID relates to a security incident involving the violation of the WAF SQL injection rule.

 

Message:"Attack ID: 102*** Desc: "Cross Site Scripting Attack" Module: "Heuristic SQL/XSS Injection Detection" Check Type: "XSS Injection Detection""

Meaning: A MySQL injection or cross-site injection was detected.

Priority: Alert

0202006007 (security: waf url protection)

This log ID relates to a security incident involving the violation of URL protection rules.

 

Message:"Attack ID: 103*** Desc: "Request URL Pattern Violation" Module: "URL Protection" Check Type: "URL Access Rule""

Meaning: A violation is triggered due to a match of one or more of the url protection rules.

Priority: Alert

0202006008 (security: waf bot)

This log ID relates to a security incident involving Bot detection.

 

Message:Attack ID: 104*** Desc: "Bad Robot Attack" Module: "Bot Detection" Check Type: "Bad Robot"

Meaning: A bad robot or content scraper is detected.

Priority: Alert

0202006009 (security: waf xml validation)

This log ID relates to a security incident involving XML validation.

 

Message:"Attack ID: 105*** Desc: "XML schema is invalid" Module: "XML validation detection" Check Type: "XML schema check""

Meaning: A violation is triggered due to a match of one or more of the XML options.

Priority: Alert

0202006010 (security: waf json validation)

This log ID relates to a security incident involving WAF JSON validation rules.

 

Message:"Attack ID: 106*** Desc: "possible cross-site scripting attacks" Module: "JSON validation detection" Check Type: "JSON cross-site scripting check"

Meaning: A violation is triggered due to a match of one or more of the JSON options.

Priority: Alert

0202006011 (security: waf soap validation)

This log ID relates to a security incident involving SOAP validation.

 

Message:"Attack ID: 1050*** Desc: "SOAP content is invalid for WSDL" Module: "XML validation detection" Check Type: "SOAP WSDL validate""

Meaning: A violation is triggered due to a match of one or more of the SOAP options.

Priority: Alert

0202006012 (security: waf_web_scraping)

This log ID relates to a security incident involving Web Scrapping Attack.

Message: "Attack ID: 1070*** Desc: "Web Scrapping Attack" Module: "Advanced-Protection" Check Type: "Content-Scraping""

Meaning: A violation is triggered due to a match of one or more of Advanced Protection rule.

Priority: Alert

0202006013 (security: waf_cookie_security)

This log ID relates to a security incident involving the violation of Cookie Security rule.

Message: "Attack ID: 1080*** Desc: "The COOKIE SIGNATURE is invalid" Module: "Cookie Security" Check Type: "SIGNED COOKIE""

Meaning: A violation is triggered due to a match of one or more of Cookie Security rule.

Priority: Alert

0202006014 (security: waf_csrf_protection)

This log ID relates to a security incident involving CSRF attack.

Message: "Attack ID: 1090*** Desc: "Request CSRF Violation" Module: "CSRF Protection" Check Type: "CSRF Protection""

Meaning: A violation is triggered due to a match of one or more of CSRF Protection rule.

Priority: Alert

0202006015 (security: waf_brute_force)

This log ID relates to a security incident involving Brute Force Attack.

Message: "Attack ID: 1100*** Desc: "Brute Protection" Module: "Brute Force Login Protection" Check Type: "BRUTE FORCE LOGIN PROTECTION""

Meaning: A violation is triggered due to a match of one or more of Brute Force rule.

Priority: Alert

0202006016 (security: waf_data_leak_prevention)

This log ID relates to a security incident involving the violation of Data Leak Prevention rule.

Message: "Attack ID: 1110*** Desc: "Data Leak Violation" Module: "Data Leak Prevention" Check Type: "Data Leak""

Meaning: A violation is triggered due to a match of one or more of Data Leak Prevention rule.

Priority: Alert

0202006017 (security: waf_html_input_validation)

This log ID relates to a security incident involving HTTP request input validation.

Message: "Attack ID: 1120*** Desc: "Request Input parameter" Module: " HTML Input Validation" Check Type: "Input Parameter""

Meaning: A violation is triggered due to a match of one or more of HTML Input Validation rule.

Priority: Alert

0202006018 (security: waf_anti_defacement)

This log ID relates to a security incident involving Web page defacement.

Message: "file [/test/bigfile2_3] on site [wad1] of vdom root has been deleted. Acknowledge successfully."

Meaning: A page defacement detection of one or more Anti defacement profile.

Priority: Alert

0202006004 (security: waf signature)

This log ID relates to a security incident involving WAF signature attack.

 

Message:Find Attack ID: 100*** Desc: "Web Application Joomla! SQL Injection Attempt -- category.php catid SELECT" Module: "SQL Injection" Check Type: "Coldfusion Injection"

Meaning: A web generic attack was detected.

Priority: Alert

0202006005 (security: http protocol constraint)

This log ID relates to a security incident involving HTTP protocol constraint rule.

 

Message:"Attack ID: 101*** Desc: "HTTP Method Violation" Module: "HTTP Protocol Constraint" Check Type: "Request Method Rule""

Meaning: A violation is triggered due to a match of one or more of the HTTP protocol constraint options.

Priority: Alert

0202006006 (security: waf sql injection)

This log ID relates to a security incident involving the violation of the WAF SQL injection rule.

 

Message:"Attack ID: 102*** Desc: "Cross Site Scripting Attack" Module: "Heuristic SQL/XSS Injection Detection" Check Type: "XSS Injection Detection""

Meaning: A MySQL injection or cross-site injection was detected.

Priority: Alert

0202006007 (security: waf url protection)

This log ID relates to a security incident involving the violation of URL protection rules.

 

Message:"Attack ID: 103*** Desc: "Request URL Pattern Violation" Module: "URL Protection" Check Type: "URL Access Rule""

Meaning: A violation is triggered due to a match of one or more of the url protection rules.

Priority: Alert

0202006008 (security: waf bot)

This log ID relates to a security incident involving Bot detection.

 

Message:Attack ID: 104*** Desc: "Bad Robot Attack" Module: "Bot Detection" Check Type: "Bad Robot"

Meaning: A bad robot or content scraper is detected.

Priority: Alert

0202006009 (security: waf xml validation)

This log ID relates to a security incident involving XML validation.

 

Message:"Attack ID: 105*** Desc: "XML schema is invalid" Module: "XML validation detection" Check Type: "XML schema check""

Meaning: A violation is triggered due to a match of one or more of the XML options.

Priority: Alert

0202006010 (security: waf json validation)

This log ID relates to a security incident involving WAF JSON validation rules.

 

Message:"Attack ID: 106*** Desc: "possible cross-site scripting attacks" Module: "JSON validation detection" Check Type: "JSON cross-site scripting check"

Meaning: A violation is triggered due to a match of one or more of the JSON options.

Priority: Alert

0202006011 (security: waf soap validation)

This log ID relates to a security incident involving SOAP validation.

 

Message:"Attack ID: 1050*** Desc: "SOAP content is invalid for WSDL" Module: "XML validation detection" Check Type: "SOAP WSDL validate""

Meaning: A violation is triggered due to a match of one or more of the SOAP options.

Priority: Alert

0202006012 (security: waf_web_scraping)

This log ID relates to a security incident involving Web Scrapping Attack.

Message: "Attack ID: 1070*** Desc: "Web Scrapping Attack" Module: "Advanced-Protection" Check Type: "Content-Scraping""

Meaning: A violation is triggered due to a match of one or more of Advanced Protection rule.

Priority: Alert

0202006013 (security: waf_cookie_security)

This log ID relates to a security incident involving the violation of Cookie Security rule.

Message: "Attack ID: 1080*** Desc: "The COOKIE SIGNATURE is invalid" Module: "Cookie Security" Check Type: "SIGNED COOKIE""

Meaning: A violation is triggered due to a match of one or more of Cookie Security rule.

Priority: Alert

0202006014 (security: waf_csrf_protection)

This log ID relates to a security incident involving CSRF attack.

Message: "Attack ID: 1090*** Desc: "Request CSRF Violation" Module: "CSRF Protection" Check Type: "CSRF Protection""

Meaning: A violation is triggered due to a match of one or more of CSRF Protection rule.

Priority: Alert

0202006015 (security: waf_brute_force)

This log ID relates to a security incident involving Brute Force Attack.

Message: "Attack ID: 1100*** Desc: "Brute Protection" Module: "Brute Force Login Protection" Check Type: "BRUTE FORCE LOGIN PROTECTION""

Meaning: A violation is triggered due to a match of one or more of Brute Force rule.

Priority: Alert

0202006016 (security: waf_data_leak_prevention)

This log ID relates to a security incident involving the violation of Data Leak Prevention rule.

Message: "Attack ID: 1110*** Desc: "Data Leak Violation" Module: "Data Leak Prevention" Check Type: "Data Leak""

Meaning: A violation is triggered due to a match of one or more of Data Leak Prevention rule.

Priority: Alert

0202006017 (security: waf_html_input_validation)

This log ID relates to a security incident involving HTTP request input validation.

Message: "Attack ID: 1120*** Desc: "Request Input parameter" Module: " HTML Input Validation" Check Type: "Input Parameter""

Meaning: A violation is triggered due to a match of one or more of HTML Input Validation rule.

Priority: Alert

0202006018 (security: waf_anti_defacement)

This log ID relates to a security incident involving Web page defacement.

Message: "file [/test/bigfile2_3] on site [wad1] of vdom root has been deleted. Acknowledge successfully."

Meaning: A page defacement detection of one or more Anti defacement profile.

Priority: Alert