Closed pyllyukko closed 4 years ago
When the file list in the iOS app is refreshed, it triggers Missing Content-Type Header with Request Body rule with a REPORT request to /remote.php/dav/files/<username>
REPORT
/remote.php/dav/files/<username>
This PR disables rule 920340 with REPORT requests to /remote.php/dav/files/
/remote.php/dav/files/
In the monthly chat meeting from May 4 we decided to merge this PR: https://github.com/SpiderLabs/owasp-modsecurity-crs/issues/1749#issuecomment-623634756
Issue
When the file list in the iOS app is refreshed, it triggers Missing Content-Type Header with Request Body rule with a
REPORT
request to/remote.php/dav/files/<username>
Background
Fix
This PR disables rule 920340 with
REPORT
requests to/remote.php/dav/files/