-
-
Notifications
You must be signed in to change notification settings - Fork 459
Pull requests: coreruleset/coreruleset
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
docs: add guidance on avoiding catastrophic backtracking
📖 documentation
Improvements or additions to documentation
release:ignore
Ignore for changelog release
#4667
opened Jun 15, 2026 by
fzipi
Member
Loading…
fix: remove exponential backtracking in 933160/933161 comment suffix
backport:lts-4.25
PR that must be backported to LTS release
🧙 regex-assembly
release:fix
#4666
opened Jun 15, 2026 by
fzipi
Member
Loading…
fix(942200): tighten comma branch to cut UA/Referer false positives
release:fix
#4665
opened Jun 13, 2026 by
fzipi
Member
Loading…
feat(934210): detect JWT alg:none attack in Authorization header
#4663
opened Jun 11, 2026 by
S0obi
Contributor
Loading…
10 of 12 tasks
fix(942200): revert to 4.23.0 - too many false positive on UA and Referer
#4656
opened Jun 9, 2026 by
touchweb-vincent
Contributor
Loading…
3 of 12 tasks
fix(rce): decode URL-encoded payloads in header RCE rules (#3504)
#4655
opened Jun 8, 2026 by
potato-20
Loading…
fix(921140): detect base64 encoded header injection payloads
#4654
opened Jun 8, 2026 by
Prateeksaini12
Contributor
Loading…
fix(932): detect uninitialized variable spacer in RCE evasion prefix
release:new-detection
In this PR we introduce a new detection
#4652
opened Jun 7, 2026 by
fzipi
Member
Loading…
feat(921270): Excessive Cookie Count
#4651
opened Jun 3, 2026 by
touchweb-vincent
Contributor
Loading…
2 of 12 tasks
feat(921260): Excessive HTTP Request Header Count
#4650
opened Jun 3, 2026 by
touchweb-vincent
Contributor
Loading…
3 of 12 tasks
feat(unix): detect basic quote evasion attempts against known unix commands
release:new-detection
In this PR we introduce a new detection
release:new-feature
This PR introduces a new feature
#4649
opened Jun 3, 2026 by
EsadCetiner
Member
Loading…
5 of 12 tasks
fix(932180): reduce false positive - common word not welcome on PL1
#4648
opened Jun 3, 2026 by
touchweb-vincent
Contributor
Loading…
1 of 12 tasks
feat: Add missing PostgreSQL and MySQL functions for error-based SQLi detection
#4637
opened May 11, 2026 by
joe2005mahmoud-art
Loading…
fix(932180): enforce boundaries for high-risk false positives entries
#4632
opened May 7, 2026 by
EsadCetiner
Member
Loading…
6 of 12 tasks
feat: add base64 decode to In this PR we introduce a new detection
921140 and detect cpanel CVE-2026-41940
release:new-detection
#4628
opened May 3, 2026 by
EsadCetiner
Member
•
Draft
3 of 12 tasks
test: add containerized default go-ftw tests to docker compose file
#4627
opened May 1, 2026 by
studersi
Contributor
Loading…
6 of 12 tasks
fix(932): add backslash-prefix evasion to shell command detection
release:new-detection
In this PR we introduce a new detection
#4599
opened Mar 30, 2026 by
zoutjebot
Contributor
Loading…
fix(932130): detect ANSI-C quoting hex-encoded commands
Stale
#4598
opened Mar 30, 2026 by
zoutjebot
Contributor
Loading…
fix(942190,942230): detect SQLite == and GLOB, PostgreSQL ARRAY @>
Stale
#4597
opened Mar 30, 2026 by
zoutjebot
Contributor
Loading…
fix(932270): require boundary before tilde expansion patterns
Stale
#4596
opened Mar 30, 2026 by
zoutjebot
Contributor
Loading…
fix(932330): require non-alphanumeric prefix for bash negation pattern
#4595
opened Mar 30, 2026 by
zoutjebot
Contributor
Loading…
fix(932): require arguments for base64, lastlog, lastlogin
Stale
#4593
opened Mar 30, 2026 by
zoutjebot
Contributor
Loading…
fix(932): remove w from Unix no-arguments command list
#4592
opened Mar 30, 2026 by
zoutjebot
Contributor
Loading…
Previous Next
ProTip!
Type g i on any issue or pull request to go back to the issue listing page.