Lucene search

K
cvelistMitreCVELIST:CVE-2019-13464
HistoryJul 09, 2019 - 6:07 p.m.

CVE-2019-13464

2019-07-0918:07:21
mitre
www.cve.org

8.1 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

29.8%

An issue was discovered in OWASP ModSecurity Core Rule Set (CRS) 3.0.2. Use of X.Filename instead of X_Filename can bypass some PHP Script Uploads rules, because PHP automatically transforms dots into underscores in certain contexts where dots are invalid.

8.1 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

29.8%