Bug ID 738864: javascript functions in href are learned from response as new URLs

Last Modified: Oct 06, 2020

Bug Tracker

Affected Product:  See more info
BIG-IP ASM(all modules)

Known Affected Versions:
13.1.0,,,,,,,,, 13.1.1,,, 14.0.0,,,,

Fixed In:

Opened: Jul 31, 2018
Severity: 3-Major


New urls representing javascript functions are learned from response.


Wrong URLs are created and added to the policy (not really interfering with enforcement but adds redundant noise to the policy)


Learn from response is turned on and URLs learning set to 'Always'


Either: - Change URL learning from 'Always' to any of the other learning options (Compact \ Selective \ Never). - Disable learn from response

Fix Information

javacript functions are no longer learned from responses as new URLs.

Behavior Change