Known vulnerabilities in OWASP OWASP ModSecurity Core Rule Set (CRS) 3.1.2

Vendor: OWASP

Website:

Total Security Bulletins: 3

Security bulletins (3)

Secuity bulletin	Severity	Status	Published
SB2026010786: Multipart bypass using multiple content-type parts in ModSecurity Core Rule Set	Medium	Patched	07.01.2026
SB2023072508: Type Confusion in coreruleset	Medium	Patched	25.07.2023
SB2019070929: File upload rules bypass in OWASP ModSecurity Core Rule Set (CRS)	Medium	Patched	09.07.2019