writeups.xyz / ModSecurity

Title	Vulnerabilities	Programs	Authors
Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!	Confusion Attack RCE XSS Access Control Bypass Authentication Bypass SSRF	Apache HTTP Server ModSecurity Redmine	Orange Tsai (@Orange_8361)
ModSecurity: Path Confusion and really easy bypass on v2 and v3	WAF Bypass Path Confusion	ModSecurity	Andrea Menin (@AndreaTheMiddle)
WAF bypasses via 0days	WAF Bypass Content-Type Confusion Charset Confusion	ModSecurity	Terjanq (@Terjanq)
Bypassing ModSecurity for RCEs	WAF Bypass Code Injection RCE	ModSecurity	Somdev Sangwan (S0md3v)
ModSecurity DoS Vulnerability in JSON Parsing (CVE-2021-42717)	DoS	ModSecurity	TheMiddle (@AndreaTheMiddle)

Page 1 of 1