Skip to content

False negative #148

New issue
New issue
Open
Open
False negative#148
@dune73

Description

@dune73
dune73
opened on Oct 29, 2019

The following payload is not detected by libinject (via ModSecurity 2.9.3).

a=SELECT-id-1.FROM`test`

(Based on tweet https://twitter.com/brutelogic/status/1189184204073885697)

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions