issues
search
SpiderLabs
/
owasp-modsecurity-crs
OWASP ModSecurity Core Rule Set (CRS) Project (Official Repository)
https://modsecurity.org/crs
Apache License 2.0
2.45k
stars
726
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
New ldap injection rule 921200 (fixes issue #276)
#1707
dune73
closed
4 years ago
1
Fix for issue 1587 insert
#1706
franbuehler
closed
4 years ago
1
XSS bypass with a payload not containing "<script>"
#1705
dune73
opened
4 years ago
0
PrestaShop: FP on REQUEST_COOKIE
#1704
theMiddleBlue
opened
4 years ago
0
Narrowing down subregex .*? in 941130
#1703
dune73
closed
4 years ago
5
Fix typos found by codespell.
#1702
studersi
closed
4 years ago
2
Fix FP in 941130 and rearrange regex with new regex-assemble file
#1701
dune73
closed
4 years ago
1
Blocking Object as get arguments gets blocked with Rule REQUEST-949-BLOCKING-EVALUATION.conf
#1700
impondesk
opened
4 years ago
0
@rx validation required for 933210
#1699
kkasmi
closed
4 years ago
9
Rule 941130 Blocking XML Payload
#1698
jeremyjpj0916
closed
4 years ago
1
Rule 920220 Query Parameters detecting malformed UrlEncoding?
#1697
jeremyjpj0916
closed
4 years ago
1
Rule 930120 JSON/XML Bodies with profile in the name or nested reference?
#1696
jeremyjpj0916
closed
4 years ago
1
Ignore check of CT header in POST reqest if protocol is HTTP/2
#1695
airween
closed
4 years ago
6
Ignore check of CT header in POST reqest if protocol is HTTP/2
#1694
airween
closed
4 years ago
2
Protocol enforcement 920180 does have problems with HTTP/2
#1693
mirkodziadzka-avi
closed
4 years ago
1
REQUEST-941-APPLICATION-ATTACK-XSS.conf on JSON payload
#1692
jeremyjpj0916
closed
4 years ago
2
Add Content-Type: multipart/mixed as allowed default
#1691
jeremyjpj0916
closed
4 years ago
4
Update REQUEST-920-PROTOCOL-ENFORCEMENT.conf
#1690
azurit
opened
4 years ago
2
The word "Warning" causes "PCRE limit exceeded"
#1689
mricherzhagen
opened
4 years ago
3
Update REQUEST-920-PROTOCOL-ENFORCEMENT.conf
#1688
azurit
closed
4 years ago
6
V3.3/dev GitHub actions
#1687
fzipi
closed
4 years ago
0
Wordpress Problem
#1686
kakigorimochi
closed
4 years ago
1
Test pr
#1685
theMiddleBlue
closed
4 years ago
1
Travis failure workaround
#1684
theMiddleBlue
closed
4 years ago
10
Monthly Chat Agenda March (2020-03-02)
#1683
dune73
closed
4 years ago
1
Update REQUEST-920-PROTOCOL-ENFORCEMENT.conf
#1682
azurit
closed
4 years ago
5
Update REQUEST-920-PROTOCOL-ENFORCEMENT.conf
#1681
azurit
closed
4 years ago
1
travis test
#1680
theMiddleBlue
closed
4 years ago
2
new vuln scanner for scanners-user-agents.data
#1679
wjwoodson
closed
4 years ago
3
Remove req msg dot
#1678
nerrehmit
closed
4 years ago
8
Rules 911100, 949110, 980130: False Positives (paranoia level 1)
#1677
vieridipaola
closed
4 years ago
1
MULTIPART_STRICT_ERROR False Positive
#1676
osamamaruf
closed
4 years ago
1
Fix FP with create with 942360
#1675
franbuehler
closed
4 years ago
2
Extend sql having in rule 942230
#1674
franbuehler
closed
4 months ago
2
XenForo: add exclusions, remove unnecessary chains
#1673
lifeforms
closed
4 years ago
4
Added SemrushBot to crawlers-user-agents.data
#1672
dune73
closed
4 years ago
2
Monthly Chat Agenda February (extraordinary changed to: 2020-02-10)
#1671
dune73
closed
4 years ago
3
What happend to the experimental rules from v2?
#1670
JStyle21
closed
4 years ago
3
Wordpress preview page false positive on REQUEST-949-BLOCKING-EVALUATION
#1669
podguzovvasily
opened
4 years ago
0
Avoid embedded anchors in CRS rule 942330
#1668
allanrbo
closed
4 years ago
3
Remove /util/docker folder from v3.3/dev branch (now in dedicated repo)
#1667
bittner
closed
2 years ago
5
Regression Tests in CRS doesn't have Tests for some of the CRS Rules
#1666
srikr
opened
4 years ago
4
Rule 941120 Processing time is too long
#1665
sunskyyao
opened
4 years ago
6
Typos across the board
#1664
dune73
closed
4 years ago
1
RE2 compatibility for 920120
#1663
allanrbo
opened
4 years ago
15
Update rx 942450
#1662
wjwoodson
closed
4 years ago
11
Ensure single ranges are also checked
#1661
fgsch
closed
4 years ago
3
Rule 920190 should work with a single range (TBC)
#1660
fgsch
closed
4 years ago
1
Fix 930100 and 930110 (REQUEST_BODY)
#1659
theMiddleBlue
closed
4 years ago
2
XenForo: Remove unnecessary chains
#1658
lifeforms
closed
4 years ago
1
Previous
Next