ModSecurity WAF is known to be vulnerable to bypass techniques. Security researchers have found various ways to evade ModSecurity's protection mechanisms, making it ineffective in blocking malicious attacks. It is important for organizations using ModSecurity to be aware of these vulnerabilities and implement additional security measures to protect their systems.
For more details, check out the original tweet here: https://twitter.com/coffinxp7/status/1898338719385706887