Issues: coreruleset/coreruleset
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Author
Label
Projects
Milestones
Assignee
Sort
Issues list
FP: "time express" in json value
➕ False Positive
v4 unix rce
One of the many reports on FPs with the new unix rce rules in v4
#3711
opened May 22, 2024 by
niklasweimann
Changed behavior with httpd/mod_security due outbound anomaly score resetting in v4.2.0
➕ False Positive
#3696
opened May 8, 2024 by
arminabf
Monthly Chat Agenda May 2024 (2024-05-06 and 2024-05-20)
🔖 Meeting Agenda
#3694
opened May 6, 2024 by
dune73
Apache 403 Forbidden error handling and duplicate HTTP response headers
🐛 bug
Something isn't working
#3679
opened Apr 22, 2024 by
ablanken
How to build rule exclusions for specific sites on a Multisite server?
➕ False Positive
#3655
opened Apr 9, 2024 by
Danrancan
Rule 933150 Has False Positive for URLs
➕ False Positive
#3641
opened Apr 2, 2024 by
ssigwart
1 task done
Javascript "console.log()" and "console.dir()" not being detected
➖ False Negative - Evasion
#3633
opened Mar 27, 2024 by
dune73
JS "fetch" and "import" (partially) not being detected
➖ False Negative - Evasion
#3632
opened Mar 27, 2024 by
dune73
Shell false positives for rules 932260 and 932236
➕ False Positive
v4 unix rce
One of the many reports on FPs with the new unix rce rules in v4
#3631
opened Mar 25, 2024 by
superlgn
FP sql injection in pattern with integer after string "update" e.g. "update 1"
➕ False Positive
⏳ awaiting feedback
CRS dev asked feedback
❓ Need more info
#3630
opened Mar 24, 2024 by
joshi-mohit
Removal of severity from blocking rules leads to CrowdSec hiccoughs when running CRS4
🐛 bug
Something isn't working
#3607
opened Mar 9, 2024 by
dune73
coraza-caddy is working on sandbox ?
sandbox
Sandbox related problems
👍 Feature Request
#3597
opened Mar 3, 2024 by
Barnoux
Linter should check that all rules have the correct CRS tag and version
👍 Feature Request
#3573
opened Feb 16, 2024 by
theseion
Document rule exclusion pkg to plugin migration from CRS3 to CRS4 in separate blog post
v4-doc
v4 documentation and administration
#3565
opened Feb 14, 2024 by
dune73
Detect RCE in User-Agent header (was 932200)
v4.1
Target Release v4.1
👍 Feature Request
#3558
opened Feb 13, 2024 by
fzipi
Clean up unix-evasion-prefix.ra
🚀 enhancement
New feature or request
#3534
opened Feb 6, 2024 by
theseion
932239 may be missing Something isn't working
urlDecodeUni
🐛 bug
#3504
opened Jan 22, 2024 by
theseion
Detect RCE in fragments of URLs in Referer header (932205)
🚀 enhancement
New feature or request
#3498
opened Jan 20, 2024 by
theseion
False positive on interactions with GoToSocial
➕ False Positive
#3497
opened Jan 19, 2024 by
kvibber
Regression test badge for older releases can become inactive
📖 documentation
Improvements or additions to documentation
#3496
opened Jan 18, 2024 by
theseion
Previous Next
ProTip!
Type g p on any issue or pull request to go back to the pull request listing page.