azurit
azurit
@louis07r It was matched by CRS rules, as you can see in my comment above.
@louis07r Can we close this?
We definitely should not allow JSON in User-Agent. I suggest to close this. @isniukArte Do you need help with writing an exclusion rule?
@isniukArte ping.
@xzhang-ipipeline Hi, this is detected on PL1 by CRS4: ``` $ curl -X POST -i --data '<script>alert("encoded")</script>' -H "x-format-output: txt-matched-rules" https://sandbox.coreruleset.org/ HTTP/1.1 403 Forbidden Date: Fri, 27 Sep 2024 10:11:34...
Should be readded.
I still don't get why writing a proper exclusion is not a solution here.
I'm running CRS globally, without option for users to disable it, on my own webhosting services which i'm providing for ~10 thousands of domains (all sort of web software -...
I'm running on PL1 which is recommended if you don't want to mess up with FPs too much. Blocking from 5.