-
Notifications
You must be signed in to change notification settings - Fork 1.6k
Issues: owasp-modsecurity/ModSecurity
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Author
Label
Projects
Milestones
Assignee
Sort
Issues list
I'm having trouble importing the modsecurity module into nginx.
2.x
Related to ModSecurity version 2.x
#3317
opened Dec 23, 2024 by
MuhammetAliKara
Matched \"Operator Related to ModSecurity version 3.x
Eq' with parameter
0' against variable REQUEST_HEADERS:Host' (Value:
0' )
3.x
#3316
opened Dec 18, 2024 by
MorrowxD
Cannot seem to compile for Windows 32-bit (x86)
3.x
Related to ModSecurity version 3.x
#3313
opened Dec 3, 2024 by
ElevationsRPG
Release builds doesn't contain the libs or dlls
3.x
Related to ModSecurity version 3.x
#3312
opened Dec 3, 2024 by
ElevationsRPG
Memory leak in vg_replace_malloc.c with large ruleset
3.x
Related to ModSecurity version 3.x
#3311
opened Dec 3, 2024 by
chenuduss
ModSec Audit logs in JSON format - not JSON?
3.x
Related to ModSecurity version 3.x
#3310
opened Dec 3, 2024 by
paul-hammant
Drop YAJL dependency
2.x
Related to ModSecurity version 2.x
3.x
Related to ModSecurity version 3.x
#3308
opened Nov 26, 2024 by
mikelolasagasti
Memory Leak with nginx 1.26
3.x
Related to ModSecurity version 3.x
#3303
opened Nov 14, 2024 by
nedngo
Segmentation fault in ModSecurity 2.9 for Apache
2.x
Related to ModSecurity version 2.x
#3300
opened Nov 13, 2024 by
vizovitin
SecRuleUpdateActionById directive with a range
3.x
Related to ModSecurity version 3.x
#3297
opened Nov 12, 2024 by
oceanmancuonh
feat: Allow
multipart/mixed
request with special "OData batch" structure
#3296
opened Nov 7, 2024 by
HeikoTheissen
Operator @rx has different flags in two engines
2.x
Related to ModSecurity version 2.x
#3295
opened Nov 7, 2024 by
airween
Unicode encoding (table) problem on engine level leading to CRS false positives (U+062F and U+D8AF resolving to slash)
2.x
Related to ModSecurity version 2.x
3.x
Related to ModSecurity version 3.x
#3294
opened Nov 4, 2024 by
dune73
Segment error occurs after calling msc_set_log_cb set callback function
3.x
Related to ModSecurity version 3.x
#3292
opened Nov 1, 2024 by
dkwang2024
How to Add UNIQUE_ID to Response Headers?
3.x
Related to ModSecurity version 3.x
#3290
opened Oct 30, 2024 by
meguoe
using iptables marks or ipsets
2.x
Related to ModSecurity version 2.x
#3289
opened Oct 29, 2024 by
f1-outsourcing
Custom Response Body Rule Not Blocking for Responses Larger Than 1KB
3.x
Related to ModSecurity version 3.x
#3282
opened Oct 18, 2024 by
Dr-Lazarus-V2
setvar never increments
3.x
Related to ModSecurity version 3.x
#3278
opened Oct 15, 2024 by
sharmashivanand
Building ModSecurity Dynamic Module: Should I use ./configure --with-pcre2 for libmodsecurity and Nginx Connector?
3.x
Related to ModSecurity version 3.x
#3277
opened Oct 15, 2024 by
Danrancan
Building from (Which) Source. Compilation recipe's instructions using outdate (SpiderLabs) URL's. On Purpose?
3.x
Related to ModSecurity version 3.x
#3276
opened Oct 15, 2024 by
Danrancan
SSL cert entry logs are not present in /var/logs/modsec_auddit.log file.
3.x
Related to ModSecurity version 3.x
#3272
opened Oct 9, 2024 by
vivekch0976
ModSecurity Audit Logs Showing Numeric Severity Instead of String Defined in Rules and Incorrect Severity Mapping
3.x
Related to ModSecurity version 3.x
#3271
opened Oct 8, 2024 by
rohithmulka
Inconsistent use of SecArgumentsLimit in Recommended Rules
2.x
Related to ModSecurity version 2.x
config
Related to default config
#3261
opened Sep 25, 2024 by
studersi
Previous Next
ProTip!
Follow long discussions with comments:>50.