-
### Description
*.dat files can be blocked by default firewall configurations:
- https://github.com/dotnet/runtime/issues/89073
- https://github.com/coreruleset/coreruleset/blob/0bd51ff806c68e2a5…
-
## Description
Hi, I'm new to ModSecurity and Coraza, so please excuse me if this report is not entirely accurate.
I encountered an issue while using Coraza and testing some plugins. It appears th…
-
Any thought on why two cyrillic symbols "ор" could trigger this rule?
It happens in different conditions near other symbols, but could not happen at all with other symbols.
And what would be the b…
-
### Is there an existing issue for this?
- [X] I have searched the existing issues
### Package ecosystem
Docker
### Package manager version
_No response_
### Language version
_No …
m1g0r updated
8 months ago
-
I have read and configured the log according to the instructions here.
https://github.com/wazuh/wazuh-documentation/issues/1341
however I noticed that my logs are not fully displayed.
Such ingred…
-
## False Positive
Mod security using libinjection blocks a valid request having
`[0: 006--u-m4YIaIyga-cq8yK]`
as payload.
## Description
```
ModSecurity: Warning. detected SQLi usin…
-
I wanted to include mod-security ruleset in the WAF (Nginx) of my OPNsense firewall for OWASP Top 10 Security risks.
Any idea or reference on how to do it ??
-
I am using caddy as https reverse proxy with coraza. my app streams response. w/o coraza I see page rendered gradually. with coraza I get whole page after delay. Even with empty coraza config it is …
-
## Description
In Deny mode the WAF seems to correctly handle the `allow` action, and after triggering an `allow` rule other rules in the same and subsequent phases are ignored and not triggered. I…
-
We use the _owasp/modsecurity-crs:4.2-nginx-202405060805_ image as a base image for our application. We deployed an application on Azure and the EDR (Microsoft Defender for Endpoint) has detected pote…