ModSecurity WAF has been found to be vulnerable to various bypass techniques by security researchers. These techniques allow attackers to evade ModSecurity's protection mechanisms, rendering it ineffective in blocking malicious attacks. Organizations using ModSecurity should be aware of these vulnerabilities and take necessary steps to enhance their security posture.
Original tweet: https://twitter.com/kakpozvonitru/status/1898961416209510604