Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

ModSecurity Core Rule Set — Vulnerabilities & Security Advisories 4

All 4 CVE vulnerabilities found in ModSecurity Core Rule Set, with AI-generated Chinese analysis, references, and POCs.

Vendor: OWASP

CVE IDTitleCVSSSeverityPublished
CVE-2022-39955 Partial rule set bypass in OWASP ModSecurity Core Rule Set by submitting a specially crafted HTTP Content-Type header CWE-863 7.3 High2022-09-20
CVE-2022-39956 Partial rule set bypass in OWASP ModSecurity Core Rule Set for HTTP multipart requests using character encoding in the Content-Type or Content-Transfer-Encoding header CWE-863 7.3 High2022-09-20
CVE-2022-39957 Response body bypass in OWASP ModSecurity Core Rule Set via a specialy crafted charset in the HTTP Accept header CWE-693 7.3 High2022-09-20
CVE-2022-39958 Response body bypass in OWASP ModSecurity Core Rule Set via repeated HTTP Range header submission with a small byte range CWE-863 7.5 High2022-09-20

All 4 known CVE vulnerabilities affecting ModSecurity Core Rule Set with full Chinese analysis, references, and POCs where available.