New
v2.9.10
Changes in v2.9.10:
There is a DoS vulnerability in previous versions, see CVE 2025-48866. This release includes a fix for it.
- fix: DoS vulnerability [PR from private repo - @theseion, @fzipi, @airween; fixed CVE-2025-48866]
Unclaimed project
Are you a maintainer of ModSecurity? Claim this project to take control of your public changelog and roadmap.
Changelog
ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis.
Last updated 4 days ago
Changes in v2.9.10:
There is a DoS vulnerability in previous versions, see CVE 2025-48866. This release includes a fix for it.