ModSecurity CRS ReDoS Vulnerability
by geshem - July 02, 2019 at 02:15 PM
#1
https://portswigger.net/daily-swig/modse...nerability

CVE-2019-11387 is yet another example of why rules / regex based WAFs are not the right approach.

Possibly Related Threads…
Thread Author Replies Views Last Post
0-day vulnerability that gives full control of Android phones umerkhan 5 184 October 08, 2019 at 11:18 AM
Last Post: kotp
Zero Day Vulnerability in Wordpress Plugin umerkhan 7 255 October 01, 2019 at 11:12 AM
Last Post: Noxy
phpMyAdmin Zero Day Vulnerability umerkhan 11 281 September 20, 2019 at 08:47 AM
Last Post: omnipresent

 Users browsing this thread: 1 Guest(s)