The OWASP Core Rule Set (CRS) version 4.24.0 introduces enhancements aimed at improving security and reducing false positives for administrators using ModSecurity or Coraza firewalls. Key updates include a new detection rule for php tags in Smarty templates, fixes for SQL special character detection with non-ASCII input, and improved performance through the re-engineering of leakage rules into a newer regex format. Additional tweaks address false positives related to Extensible Metadata Platform tags and XSL stylesheets, as well as whitelisting the "profile" key in JSON payloads. Overall, these modifications help streamline alert management for admins, allowing them to concentrate on legitimate threats more effectively

OWASP Core Rule Set 4.24.0 Update: Enhanced Security and Reduced False Positives

The latest OWASP Core Rule Set (CRS) version 4.24.0 includes several practical tweaks to help admins reduce noisy alerts and focus on genuine threats. A new detection rule flags php tags embedded in Smarty templates, a common cause of false positives. Additionally, the update fixes a bug affecting SQL special character detection with non-ASCII input and improves performance by re-engineering leakage rules into a newer regex format. The changes also include various tweaks to reduce false positives and improve handling of international characters and JSON payloads.

OWASP Core Rule Set 4.24.0 Update: Enhanced Security and Reduced False Positives @ Linux Compatible