Unpatched ModSecurity CRS vulnerabilities leave web servers open to denial-of-service attacks
ReDoS flaws discovered in the OWASP Core Rule Set A clutch of unpatched vulnerabilities in ModSecurity’s OWASP Core Rule Set has left potentially thousands of web servers open to denial-of-service (DoS) attacks. ModSecurity is a popular open source web application firewall (WAF) that are designed to help stop attacks or unwanted behavior against applications by […]