This article describes how to setup Request URL in File Security to scan file uploaded for all URL and applied the respective action accordingly.
It is ONLY focusing on the needed setup for the Request URL.
It is maybe necessary to preconfigure other respective File Security setup and refer to the documentation at the end of this article for more information on configuring the File Security.
Solution
It is necessary to scan file(s) uploaded to your web application for all the URL is has.
It is possible to use the File Security feature for the requirement.
From GUI
Step 1: Go to Web Protection > Input Validation > File Security > File Security Rule (tab).
Step 2: Create a new rule or edit an existing rule and change the Request URL to ^/.*
Example as below.
From CLI
# config waf file-upload-restriction-rule
edit "Scan Upload"
set request-type regular
set request-file ^/.*
next
end