diff --git a/HowtoDrupal.md b/HowtoDrupal.md
index c259a8f3..3d96506b 100644
--- a/HowtoDrupal.md
+++ b/HowtoDrupal.md
@@ -5,4 +5,12 @@ title: Howto Drupal
 
 # Install
 
-# Tips 
\ No newline at end of file
+# Tips 
+
+# CVE-2018-7600 // SA-CORE-2018-002
+
+Règle mod_security de protection (théorique)
+
+~~~
+SecRule ARGS_GET_NAMES|ARGS_POST_NAMES|REQUEST_COOKIES_NAMES "^#" "t:none,log,deny,msg:'CVE-2018-7600/Drupal-SA-CORE-2018-002 -- Deny # in (cookie|query|post) names',id:300000001"
+~~~
\ No newline at end of file