# Injection Prevention

Prophaze WAF can prevent the following Injection attacks

* OS Command Injection -  Exploiting arbitrary commands in the operating system to fingerprint Infrastructure details , and to establish a trust between host operating Systems . This happens when application passes unsafe data which Includes Forms , Cookies , URL Arguments etc
* Coldfusion Injection – Prevents database injection in Coldfusion apps
* LDAP Injection - Stops exploits which attacks LDAP Protocol
* SSI Injection – Prevents attacks which manipulates server side Includes to execute remote code injections
* UPDF/XSS Injection – Prevents XSS attacks on applications with pdf Files
* Email Injection – Prevents Email Injection where attacker utilizes Carriage return to inject extra email headers to the contact form
* Blocks system command access
* Blocks Directory Traversal attacks


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.prophaze.com/protection-use-cases/injection-prevention.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.