CVE Details
Basic Information
| Title | ModSecurity’s Insufficient Return Value Handling can Lead to XSS and Source Code Disclosure |
|---|---|
| Type | cve |
| Published | 2025-08-05T23:39:40.712Z |
| Modified | 2025-08-05T23:39:40.712Z |
Product Information
| Vendor | owasp-modsecurity |
|---|---|
| Product | ModSecurity |
| Version | < 2.9.12 |
CVSS Information
| Base Score | 6.9 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
AI Analysis
| AI Description | ModSecurity versions prior to 2.9.12 have a vulnerability where an attacker can override HTTP response Content-Type headers, potentially leading to XSS attacks and source code exposure. |
|---|---|
| AI Severity | High |
| AI Vendor | OWASP Foundation |
| AI Product | ModSecurity |
| AI Version | < 2.9.12 |
Affected Products
- owasp-modsecurity ModSecurity < 2.9.12
Additional Information
| CWE List | CWE-252 |
|---|---|
| Source | GitHub_M |
Description
ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. In versions 2.9.11
and below, an attacker can override the HTTP responseβs Content-Type, which could lead to several issues depending on the HTTP scenario. For example, we have demonstrated the potential for XSS and arbitrary script source code disclosure in the latest version of mod_security2. This issue is fixed in version 2.9.12.
and below, an attacker can override the HTTP responseβs Content-Type, which could lead to several issues depending on the HTTP scenario. For example, we have demonstrated the potential for XSS and arbitrary script source code disclosure in the latest version of mod_security2. This issue is fixed in version 2.9.12.