CVE-2009-5031

Name of the Vulnerable Software and Affected Versions ModSecurity versions prior to 2.5.11

Description The issue allows remote attackers to bypass filtering rules by including a single quote in a request parameter within the Content-Disposition field of a request that has a multipart/form-data Content-Type header. This can lead to other attacks, such as cross-site scripting (XSS) attacks.

Recommendations For versions prior to 2.5.11, update to version 2.5.11 or later to resolve the issue. As a temporary workaround, consider restricting access to the Content-Disposition field in requests with a multipart/form-data Content-Type header until the update is applied.