-
-
Notifications
You must be signed in to change notification settings - Fork 381
Issues: coreruleset/coreruleset
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Author
Label
Projects
Milestones
Assignee
Sort
Issues list
Update response rules settings and documentation to make it easier to switch off for preventing RFDoS
👍 Feature Request
#3943
opened Nov 23, 2024 by
fzipi
false positive: REQUEST-932-APPLICATION-ATTACK-RCE.conf
➕ False Positive
#3940
opened Nov 18, 2024 by
Orgoth
False Positive Issue: Blocking Return Redirects When Integrating Furgonetka Module with Prestashop API
➕ False Positive
#3938
opened Nov 16, 2024 by
Munrok
942100 False Positive matching
sos fingerprint
➕ False Positive
#3937
opened Nov 15, 2024 by
Muffinman
CRS3 Rule 950100 (RESPONSE_STATUS checking) must be phase 3
🐛 bug
Something isn't working
#3936
opened Nov 14, 2024 by
rainerjung
false positive alarms for Cloudflare OWASP Core Ruleset rule configured via cloudflare
➕ False Positive
#3935
opened Nov 13, 2024 by
musaffersherrif1
False positives with 941310 PL1 US-ASCII Malformed Encoding XSS Filter - Attack Detected
🇬🇧 DEV Retreat
Issues to be worked while at the Woburn Forest Retreat
➕ False Positive
#3933
opened Nov 5, 2024 by
dune73
False positives with 932235 PL1 Remote Command Execution: Unix Command Injection (command without evasion)
🇬🇧 DEV Retreat
Issues to be worked while at the Woburn Forest Retreat
➕ False Positive
#3932
opened Nov 5, 2024 by
dune73
False positives with 933160 PL1 PHP Injection Attack: High-Risk PHP Function Call Found
🇬🇧 DEV Retreat
Issues to be worked while at the Woburn Forest Retreat
➕ False Positive
#3931
opened Nov 5, 2024 by
dune73
False positives with 932380 PL1 Remote Command Execution: Windows Command Injection
🇬🇧 DEV Retreat
Issues to be worked while at the Woburn Forest Retreat
➕ False Positive
#3930
opened Nov 5, 2024 by
dune73
False positives with 942151 PL1 SQL Injection Attack: SQL function name detected
🇬🇧 DEV Retreat
Issues to be worked while at the Woburn Forest Retreat
➕ False Positive
#3929
opened Nov 5, 2024 by
dune73
False positives with 932125 PL1 Remote Command Execution: Windows Powershell Alias Command Injection
🇬🇧 DEV Retreat
Issues to be worked while at the Woburn Forest Retreat
➕ False Positive
#3928
opened Nov 5, 2024 by
dune73
920220 PL1 / 920221 PL1 have a lot of false positives with unencoded percent signs in URIs (-> query strings)
🇬🇧 DEV Retreat
Issues to be worked while at the Woburn Forest Retreat
➕ False Positive
#3926
opened Nov 3, 2024 by
dune73
Some rules are NOT doing IIS specific decoding of ARGS* data
👍 Feature Request
#3919
opened Nov 2, 2024 by
azurit
Invalid bash snippet in Something isn't working
restricted-upload.data
🐛 bug
#3916
opened Nov 1, 2024 by
OhMyVolk
Rule 942-APPLICATION-ATTACK-SQLI (id: 942360) contain false positive
➕ False Positive
#3914
opened Oct 31, 2024 by
abudawud
Review v3 and enhance compatibility with v4 processes
👍 Feature Request
#3912
opened Oct 29, 2024 by
fzipi
Usage of limited characters
🐛 bug
Something isn't working
➖ False Negative - Evasion
#3902
opened Oct 28, 2024 by
Xhoenix
id 933150 can raise many false positive and i should to disable it
➕ False Positive
#3899
opened Oct 25, 2024 by
abudawud
Update move sql operators to an include file and apply in different rules
#3866
opened Oct 17, 2024 by
fzipi
Look at SAML attacks and create rule to protect form common attacks
👍 Feature Request
#3864
opened Oct 16, 2024 by
fzipi
Previous Next
ProTip!
Follow long discussions with comments:>50.