Vulnerabilities in OWASP software

Type Confusion in coreruleset25 Jul, 2023
Medium Patched

Multiple vulnerabilities in OWASP ModSecurity Core Rule Set (CRS)09 Feb, 2023
Medium Patched

Multiple vulnerabilities in OWASP Enterprise Security API20 May, 2022
High Patched

MitM attack in OWASP ZAP Proxy24 Mar, 2022
Low Not Patched

Remote code execution in OWASP ZAP (Apache Log4j component)13 Dec, 2021
Сritical Patched

WAF ruleset bypass in OWASP ModSecurity Core Rule Set (CRS)01 Jul, 2021
Medium Patched

Cross-site scripting in OWASP json-sanitizer package15 Jun, 2020
Low Patched

Denial of service in OWASP ModSecurity Core Rule Set (CRS)28 Jul, 2019
Medium Patched

File upload rules bypass in OWASP ModSecurity Core Rule Set (CRS)09 Jul, 2019
Medium Patched