Changes between Initial Version and Version 1 of Ticket #53783
- Timestamp:
- 07/26/2021 12:13:05 PM (4 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
Ticket #53783 – Description
initial v1 4 4 5 5 triggering a mod security rule as below: 6 6 {{{ 7 7 941160 Warning. Pattern match \"(?i:(?:<\\w[\\s\\S]*[\\s\\/]|\'\\" ?)(?:on(?:d(?:e(?:vice(?:(?:orienta|mo)tion|proximity|found|light)|livery(?:success|error)|activate)|r(?:ag(?:e(?:n(?:ter|d)|xit)|(?:gestur|leav)e|start|drop|over)|op)|i(?:s(?:c(?:hargingtimechange ...\" at REQUEST_HEADERS:Referer. [file \"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-941-APPLICATION-ATTACK-XSS.conf\"] [line \"199\"] [id \"941160\"] [msg \"NoScript XSS InjectionChecker: HTML Injection\"] [data \"Matched Data: \x0d\x0a 2021-07-24 18:22:36 8 }}}