Hi,
when I simulate SQL-Injection Attacks while using the
owasp-modsecurity-core-rule-set, the SQLi Score shows up empty in my audit
logfile. The inbound anomaly score is exceeded and the attack is classified as
"SQL Injection Attack", but there seems to be a bug with the SQLi Score.
I use modsecurity-crs_2.0.8 and checked the
modsecurity_crs_41_sql_injection_attacks.conf -
setvar:tx.sql_injection_score=+%{tx.critical_anomaly_score} seems to be called
properly on every entry.
Does anybody have a clue why this happens?
Thanks for your Help
PR
_______________________________________________
Owasp-modsecurity-core-rule-set mailing list
[email protected]
https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
