---
name: Application Security
slug: application-security
organization_slug: cloudflare
category: infrastructure
source_count: 1
canonical: https://releases.sh/cloudflare/application-security
---

# Application Security

## Sources (1)

- [Application Security Changelog](https://releases.sh/cloudflare/cloudflare-application-security) — `feed`

## Recent Releases

_Summaries below — fetch the release's `canonical` URL for full content, or `url` for the original source._

<Release source="cloudflare-application-security" date="June 15, 2026" published="2026-06-15T00:00:00.000Z" url="https://developers.cloudflare.com/changelog/post/scheduled-waf-release/" canonical="https://releases.sh/release/rel_z8usPQvSicyDCo_qsZLcu" truncated="true">
### WAF - WAF Release - Scheduled changes for 2026-06-22

Announcement Date

Release Date

Release Behavior

Legacy Rule ID

Rule ID

Description

Comments

2026-06-15

2026-06-22

Log

N/A

500a90789f874345b...
</Release>

<Release source="cloudflare-application-security" date="June 15, 2026" published="2026-06-15T00:00:00.000Z" url="https://developers.cloudflare.com/changelog/post/2026-06-15-waf-release/" canonical="https://releases.sh/release/rel_lLpAiqyCos_Vh9lKYJKmA" truncated="true">
### WAF - WAF Release - 2026-06-15

This week's release introduces new managed protection to address a critical SQL injection vulnerability in Ghost CMS (CVE-2026-26980) and a new generi...
</Release>

<Release source="cloudflare-application-security" date="June 15, 2026" published="2026-06-15T00:00:00.000Z" url="https://developers.cloudflare.com/changelog/post/2026-06-15-threat-intelligence-fields/" canonical="https://releases.sh/release/rel_bL79mjnkL9eO8CZdbBV6Y" truncated="true">
### WAF - Use Cloudforce One threat intelligence in WAF rules

You can now match incoming requests against Cloudforce One threat intelligence in your WAF rules. A new detection looks up the client IP address of ea...
</Release>

<Release source="cloudflare-application-security" date="June 10, 2026" published="2026-06-10T00:00:00.000Z" url="https://developers.cloudflare.com/changelog/post/2026-06-08-brand-protection-cease-and-desist-letters/" canonical="https://releases.sh/release/rel_xalhvSGq7D3tEuKcU8rLx" truncated="true">
### Security Center - Automated Cease and Desist templates for Brand Protection

**TL;DR:** Brand Protection now features an **Automated Cease & Desist (C&D)** workflow. When you discover an infringing domain hosted outside of Clou...
</Release>

<Release source="cloudflare-application-security" date="June 9, 2026" published="2026-06-09T00:00:00.000Z" url="https://developers.cloudflare.com/changelog/post/2026-06-09-waf-release/" canonical="https://releases.sh/release/rel_nlXfBqrgs2EjZEWzNWSQq" truncated="true">
### WAF - WAF Release - 2026-06-09

This release introduces new detections for a critical SQL injection vulnerability in Drupal installations utilizing PostgreSQL (CVE-2026-9082), alongs...
</Release>

<Release source="cloudflare-application-security" date="June 8, 2026" published="2026-06-08T00:00:00.000Z" url="https://developers.cloudflare.com/changelog/post/2026-06-08-create-waf-rules-from-threat-events/" canonical="https://releases.sh/release/rel_bg3hihp99MCdQpRiA4Nhi" truncated="true">
### Security Center - Create WAF rules directly from Threat Events saved views

Cloudforce One users can now turn [Threat Events indicators](https://developers.cloudflare.com/security-center/cloudforce-one/#analyze-threat-events) ...
</Release>

<Release source="cloudflare-application-security" date="June 8, 2026" published="2026-06-08T00:00:00.000Z" url="https://developers.cloudflare.com/changelog/post/2026-06-08-threat-actor-profiles/" canonical="https://releases.sh/release/rel_H3iXx0EG1FDe6anWqoo-n" truncated="true">
### Security Center - Introducing Threat Actor Profiles in Threat Events

**TL;DR:** We’ve launched **Threat Actor Profiles** directly inside the Threat Events dashboard. You can now immediately pivot from a generic alert or...
</Release>

<Release source="cloudflare-application-security" date="May 29, 2026" published="2026-05-29T00:00:00.000Z" url="https://developers.cloudflare.com/changelog/post/2026-05-29-security-insights-default-scans/" canonical="https://releases.sh/release/rel_yRssFSfA7PfK1KfgK7mxk" truncated="true">
### Security Center - Security scans more frequent

Security Insights scans now run more often. Cloudflare scans Free accounts **every 7 days**, Pro and Business accounts **every 3 days**, and Enterpris...
</Release>

<Release source="cloudflare-application-security" date="May 20, 2026" published="2026-05-20T00:00:00.000Z" url="https://developers.cloudflare.com/changelog/post/2026-05-20-waf-release/" canonical="https://releases.sh/release/rel_8oQKCQNV79wTOQdINtpSW" truncated="true">
### WAF - WAF Release - 2026-05-20

## WAF Release - 2026-05-20

May 20, 2026 

**Key Findings**

* Existing rule enhancements have been deployed to improve detection resilience against ...
</Release>

<Release source="cloudflare-application-security" date="May 15, 2026" published="2026-05-15T00:00:00.000Z" url="https://developers.cloudflare.com/changelog/post/2026-05-15-emergency-waf-release/" canonical="https://releases.sh/release/rel_CNIKKLiLwhHnDMaMJTa88" truncated="true">
### WAF - WAF Release - 2026-05-15 - Emergency

This emergency release introduces two new rules to detect nginx heap buffer overflow and heap spray exploitation attempts targeting the rewrite module...
</Release>