ModSecurity
ModSecurity copied to clipboard
owasp-modsecurity
Fix: Setting of variable REQUEST_FILENAME
Currently REQUEST_FILENAME variable includes the domain name from the URL while according to the documentation this is not the expected behaviour.
The details of the existing bug can be found on an issue opened for the same - https://github.com/SpiderLabs/ModSecurity/issues/2853
