ModSecurity Multipart Message Parsing Security Bypass Vulnerability
Modsecurity Versions prior to 2.70
SEC Consult has reported a vulnerability in ModSecurity, which can be exploited by malicious people to bypass certain security restrictions
The vulnerability is caused due to an error when parsing multipart requests and can be exploited to bypass certain filtering rules.
Remote Security Bypass
Update to version 2.70.