Jan Hoff

Modsecurity prevents update of contacts

2

The default configuration of NCP with modsecurity seems to have an issue when handling vcard files. Setup: current docker instance of NCP with modsecurity enabled, latest updates Steps to reproduce:...

Embedded documents

6

Following samples are currently not executed to their malicious end: MD5 d2ddeb8c692b238b1bda653ddc4d5206 and MD5 1397c911257c53455b0951f0ab40b3b5 It contains embedded objects, that trigger malicious actions upon clicking. One idea would be to...