Skip to content

Issues: owasp-modsecurity/ModSecurity

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

187 Open 2,172 Closed
187 Open 2,172 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

[BUG] multiMatch lead to unexpected match 3.x Related to ModSecurity version 3.x bug It is a confirmed bug
#3183 opened Jul 15, 2024 by leveryd
1
No error log if noauditlog is set 3.x Related to ModSecurity version 3.x
#3180 opened Jul 8, 2024 by Rapsody09
4
350001 rule blocks the Facebook Sharing Debugger bot 3.x Related to ModSecurity version 3.x
#3179 opened Jul 6, 2024 by MariuszMilka
1
Discussion of the new XML processing feature 2.x Related to ModSecurity version 2.x
#3178 opened Jun 28, 2024 by airween
26
[modsecurity.conf-recommended] align processing on request & response for json 2.x Related to ModSecurity version 2.x
#3175 opened Jun 24, 2024 by fzipi
4
[client <ip address>] field is missing in modsec_audit.log in section H 3.x Related to ModSecurity version 3.x
#3174 opened Jun 20, 2024 by n-rodriguez
10
Build error related to APR in config.c 2.x Related to ModSecurity version 2.x
#3173 opened Jun 17, 2024 by Marcool04
4
Problem about proxy action 2.x Related to ModSecurity version 2.x Platform - Apache
#3170 opened Jun 12, 2024 by prince-java
6
Assistance Required with ModSecurity Rule Compatibility for OpenLiteSpeed 2.x Related to ModSecurity version 2.x
#3169 opened Jun 9, 2024 by admiral504
3
@pmFromFile problems 3.x Related to ModSecurity version 3.x
#3165 opened Jun 6, 2024 by swagliquido
1
Best solution/workaround sanitise modsecurity v3 3.x Related to ModSecurity version 3.x duplicate Ops. Somebody else already hit that bump
#3163 opened May 31, 2024 by cello86
@airween
2
Apache: Short Lingering Close 2.x Related to ModSecurity version 2.x
#3143 opened May 15, 2024 by studersi
@marcstern
Encountering SIGSEGV when parsing multiple rule sets in parallel 3.x Related to ModSecurity version 3.x
#3138 opened May 10, 2024 by rkrishn7
4
Update link on Reference Manual v3 wiki page 3.x Related to ModSecurity version 3.x
#3136 opened May 5, 2024 by MefhigosetH
@airween
2
[Idea] Add variable support for SecAuditLog
#3133 opened Apr 25, 2024 by Xakiadalisabad
2
@rbl operator does not support IPv6 2.x Related to ModSecurity version 2.x 3.x Related to ModSecurity version 3.x bug It is a confirmed bug duplicate Ops. Somebody else already hit that bump 🥇 good first issue
#3131 opened Apr 24, 2024 by airween
@airween
Incorrect utf8toUnicode transformation for 00xx 2.x Related to ModSecurity version 2.x
#3129 opened Apr 23, 2024 by marcstern
Regular Expression Failure Triggers !@rx 3.x Related to ModSecurity version 3.x
#3123 opened Apr 19, 2024 by ssigwart
@airween
1
Phasing out SecStatusEngine 2.x Related to ModSecurity version 2.x
#3122 opened Apr 19, 2024 by vloup
3
Lua installed, but Modsecurity still dont work with it 3.x Related to ModSecurity version 3.x
#3119 opened Apr 4, 2024 by duongtuankiet
2
Is it possible to change the SecAuditLogStorageDir variable so that the logs are sorted by vhost? 2.x Related to ModSecurity version 2.x
#3118 opened Mar 31, 2024 by vukitoso
@marcstern
Error: Could not set variable "ip.brute_force_counter" and Could not set variable "ip.xmlrpc_counter" as the collection does not exist. 2.x Related to ModSecurity version 2.x
#3115 opened Mar 28, 2024 by ic32k
6
Feature request: Limit the number of rules processed per request 2.x Related to ModSecurity version 2.x
#3112 opened Mar 25, 2024 by no-sec-marko
3
libmodsecurity3: Request body is not logged 3.x Related to ModSecurity version 3.x
#3109 opened Mar 19, 2024 by EsadCetiner
@airween
10
SecRuleScript actions always considered disruptive 3.x Related to ModSecurity version 3.x bug It is a confirmed bug
#3108 opened Mar 16, 2024 by theseion
@airween
1
ProTip! Type g p on any issue or pull request to go back to the pull request listing page.