ModSecurity: Warning

Dream's picture
Thu, 06/01/2017 - 06:48
ModSecurity: Warning

I've a lot of Apache error like this...

ModSecurity: Warning. Pattern match "(?i:(?:[\\\\d\\\\W]\\\\s+as\\\\s*?[\\"'`\\xc2\\xb4\\xe2\\x80\\x99\\xe2\\x80\\x98\\\\w]+\\\\s*?from)|(?:^[\\\\W\\\\d]+\\\\s*?(?:union|select|create|rename|truncate|load|alter|delete|update|insert|desc))|(?:(?:select|create|rename|truncate|load|alter|delete|update|insert|desc)\\\\s+ ..." at ARGS_NAMES:4[delete any video content]. [file "/etc/httpd/modsecurity.d/modsecurity_crs_41_sql_injection_attacks.conf"] [line "243"] [id "981247"] [msg "Detects concatenated basic SQL injection and SQLLFI attempts"] [data "Matched Data: 4[delete found within ARGS_NAMES:4[delete any video content]: 4[delete any video content]"] [severity "CRITICAL"] [tag "OWASP_CRS/WEB_ATTACK/SQL_INJECTION"] [hostname "XXXXX"] [uri "XXXXX/admin/people/permissions"] [unique_id "WS77jc9UJQEXkr9EjN757AAAAAg"]

ModSecurity: Warning. Match of "beginsWith %{}" against "TX:1" required. [file "/etc/httpd/modsecurity.d/modsecurity_crs_40_generic_attacks.conf"] [line "163"] [id "950120"] [rev "3"] [msg "Possible Remote File Inclusion (RFI) Attack: Off-Domain Reference/Link"] [data "Matched Data: found within TX:1:"] [severity "CRITICAL"] [ver "OWASP_CRS/2.2.9"] [maturity "9"] [accuracy "9"] [tag "OWASP_CRS/WEB_ATTACK/RFI"] [hostname "XXXXX"] [uri XXXXX/admin/modules/install"] [unique_id "WS77WIHBXpECbZAWsZ3jEQAAAAY"]

Do you know what the reason might be?

Thank you

phuonght's picture
Fri, 06/02/2017 - 05:24


Please check Mod Security in your server.

Thank you.

Log in or register to post comments
Have More Idea?

We are here to build your website!

No Universal solution fits all special business requirements. Our experienced team is ready with ideas and state-of-the-art technical solutions to consult the best solution within your budget.