XSS payload from Reddit used against OWASP ModSecurity Core Rules
Chaim Sanders of Trustwave shared a link to a blogpost with XSS extracted from Reddit’s XSS subreddit. I sat in the train the other day and thought I could kill time by taking a look at the traffic and how ModSecurity and the Core Rules would handle it. Here is the traffic in question. Apparently, […]
