CVE-2026-52747 - ModSecurity: Multipart form-data parser silently strips embedded line breaks from form-field values, enabling request-body inspection bypass
CVE ID :CVE-2026-52747 Published : July 10, 2026, 10:16 p.m. | 16 minutes ago Description :ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. Prior to 3.0.16, the multipart/form-data request body parser in libmodsecurity silently...