ModSecurity — Vulnerabilities & Security Advisories 6

All 6 CVE vulnerabilities found in ModSecurity, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2025-54571	ModSecurity's Insufficient Return Value Handling can Lead to XSS and Source Code Disclosure CWE-252	6.1^AI	Medium^AI	2025-08-05
CVE-2025-52891	ModSecurity empty XML tag causes segmentation fault CWE-20	6.5	Medium	2025-07-02
CVE-2025-48866	ModSecurity has possible DoS vulnerability in sanitiseArg action CWE-1050	7.5	High	2025-06-02
CVE-2025-47947	ModSecurity Has Possible DoS Vulnerability CWE-1050	7.5	High	2025-05-21
CVE-2025-27110	Libmodsecurity3 has possible bypass of encoded HTML entities CWE-172	5.3	-	2025-02-25
CVE-2024-1019	WAF bypass of the ModSecurity v3 release line CWE-20	8.6	High	2024-01-30

All 6 known CVE vulnerabilities affecting ModSecurity with full Chinese analysis, references, and POCs where available.