I followed this tutorial: Installing and Configuring the OpenLiteSpeed ModSecurity Module • OpenLiteSpeed to install OWASP CRS.
Tested with malicious URL like:
- http://localhost:8003/attack.php?q=<script>alert(document.cookie)</script>
- http://localhost:8003/attack.php?q=/bin/bash
all works...
Hi. I'd like to ask a question about a problem that I've been facing with OpenLiteSpeed.
Here's the full problem.
So I'm running a deployment script on my VM. When there's new version of the app, the scripts runs this sequence:
Create a backup folder for the current production web folder...