cluckindan 2 days ago

They do mitigate known vulnerabilities.

1
rcxdude 1 day ago

They may mitigate known proofs of concept of vulnerabilities, and require a small amount of creativity to work around. At the cost of randomly breaking things.

cluckindan 23 hours ago

That creativity takes time. WAFs are the first line of defence, buying some time for fixing the actual vulnerabilities.