Skip to content

Issues: owasp-modsecurity/ModSecurity

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Clear current search query, filters, and sorts
134 Open 519 Closed
134 Open 519 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

Simplify code for JSON audit log 3.x Related to ModSecurity version 3.x
#3364 opened Apr 22, 2025 by JakubOnderka Loading…
@airween
4
feat: improved XMLArgs processing 3.x Related to ModSecurity version 3.x
#3363 opened Apr 20, 2025 by airween Loading…
1
How to properly handle custom status after phase 3, 4 interception 3.x Related to ModSecurity version 3.x
#3357 opened Apr 7, 2025 by meguoe
4
libModSecurity3: requests are blocked when SecRequestBodyNoFilesLimit is set to a very high value 3.x Related to ModSecurity version 3.x
#3356 opened Mar 31, 2025 by EsadCetiner
1
curl with PUT method can upload a huge file (>2GB) on remote server but hangs and timeout 3.x Related to ModSecurity version 3.x
#3352 opened Mar 17, 2025 by jonathansmith9485
6
Missing transaction logs for blocked request ingress-nginx 3.x Related to ModSecurity version 3.x
#3351 opened Mar 13, 2025 by mkuchniak
6
After building a custom docker image with the new version of nginx, the modsecurity page is turned on and it becomes messy! 3.x Related to ModSecurity version 3.x
#3333 opened Jan 23, 2025 by kejilion
12
Feature Request(v3): adjust requestBodyLimit and RequestBodyNoFilesLimit via runtime rule 3.x Related to ModSecurity version 3.x libmodsec - missing features
#3330 opened Jan 19, 2025 by EsadCetiner
@airween
2
README bug on the running of tests 3.x Related to ModSecurity version 3.x
#3328 opened Jan 13, 2025 by paul-hammant
9
Transformation hexDecode should not allow badly encoded inputs, or documentation should be updated 2.x Related to ModSecurity version 2.x 3.x Related to ModSecurity version 3.x
#3325 opened Jan 9, 2025 by fzipi
3
how i can enable test utilitys at configure level with enable flag ? 3.x Related to ModSecurity version 3.x
#3318 opened Dec 30, 2024 by osevan
2
Matched \"Operator Eq' with parameter 0' against variable REQUEST_HEADERS:Host' (Value: 0' ) 3.x Related to ModSecurity version 3.x
#3316 opened Dec 18, 2024 by MorrowxD
5
Cannot seem to compile for Windows 32-bit (x86) 3.x Related to ModSecurity version 3.x
#3313 opened Dec 3, 2024 by ElevationsRPG
17
Memory leak in vg_replace_malloc.c with large ruleset 3.x Related to ModSecurity version 3.x
#3311 opened Dec 3, 2024 by chenuduss
1
Drop YAJL dependency 2.x Related to ModSecurity version 2.x 3.x Related to ModSecurity version 3.x
#3308 opened Nov 26, 2024 by mikelolasagasti
21
Memory Leak with nginx 1.26 3.x Related to ModSecurity version 3.x
#3303 opened Nov 14, 2024 by nedngo
1
SecRuleUpdateActionById directive with a range 3.x Related to ModSecurity version 3.x
#3297 opened Nov 12, 2024 by oceanmancuonh
3
Unicode encoding (table) problem on engine level leading to CRS false positives (U+062F and U+D8AF resolving to slash) 2.x Related to ModSecurity version 2.x 3.x Related to ModSecurity version 3.x
#3294 opened Nov 4, 2024 by dune73
7
Segment error occurs after calling msc_set_log_cb set callback function 3.x Related to ModSecurity version 3.x
#3292 opened Nov 1, 2024 by dkwang2024
1
Custom Response Body Rule Not Blocking for Responses Larger Than 1KB 3.x Related to ModSecurity version 3.x
#3282 opened Oct 18, 2024 by Dr-Lazarus-V2
6
setvar never increments 3.x Related to ModSecurity version 3.x
#3278 opened Oct 15, 2024 by sharmashivanand
1
Building ModSecurity Dynamic Module: Should I use ./configure --with-pcre2 for libmodsecurity and Nginx Connector? 3.x Related to ModSecurity version 3.x
#3277 opened Oct 15, 2024 by Danrancan
3
Building from (Which) Source. Compilation recipe's instructions using outdate (SpiderLabs) URL's. On Purpose? 3.x Related to ModSecurity version 3.x
#3276 opened Oct 15, 2024 by Danrancan
3
About CVE-2024-46292 3.x Related to ModSecurity version 3.x
#3274 opened Oct 12, 2024 by airween
SSL cert entry logs are not present in /var/logs/modsec_auddit.log file. 3.x Related to ModSecurity version 3.x
#3272 opened Oct 9, 2024 by vivekch0976
4
ProTip! Add no:assignee to see everything that’s not assigned.