Non Standard POST Request

What It Means

This request uses the HTTP POST method but the actual format of the POST data matches known exploit patterns rather than standard form or API submissions.

Why It Matters

Normal POST requests follow predictable formats — form-encoded data, JSON payloads, or multipart uploads. When the POST body deviates from these patterns in ways that match known exploit signatures, it strongly indicates an attack attempt rather than a legitimate request.

Common Triggers

POST requests with body content that matches exploit patterns, unusual content types, or data structures commonly used in web application attacks.

What To Do

These blocks are typically accurate. If a legitimate API client or webhook is being blocked because it sends non-standard POST data, use Path Allowlisting to exempt that specific endpoint.