Skip to content
This repository has been archived by the owner on May 14, 2020. It is now read-only.

PrestaShop: FP on REQUEST_COOKIE #1704

Open
theMiddleBlue opened this issue Feb 28, 2020 · 0 comments
Open

PrestaShop: FP on REQUEST_COOKIE #1704

theMiddleBlue opened this issue Feb 28, 2020 · 0 comments
Assignees
@theMiddleBlue
Labels
False Positive libinjection

Comments

@theMiddleBlue
Copy link
Contributor

Description

In my logs, I have seen a false positive on a request to a PrestaShop e-commerce:
GET /themes/control/cache/v_716_db8a1bc0baf2b785f3106c4d91c790e2_all.css HTTP/1.1

that triggered the Rule ID 941100 (XSS Attack Detected via libinjection) in REQUEST_COOKIE:
Matched Data: XSS data found within REQUEST_COOKIES:PrestaShop-xxxxxxx

I self-assign this issue as a note to push a PR for an exclusion rule set for PrestaShop.

Possible solution

SecRuleUpdateTargetById 941100 !REQUEST_COOKIES:'/^PrestaShop/'

thanks @fzipi @airween
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees

@theMiddleBlue theMiddleBlue

Labels
False Positive libinjection
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@dune73 @theMiddleBlue