From abfdf78497b52a04ce19b510cbd43e765c6efa3e Mon Sep 17 00:00:00 2001
From: lpoujol <lpoujol+gitit@evolix.fr>
Date: Thu, 29 Mar 2018 12:38:40 +0200
Subject: [PATCH] CVE-2018-7600

---
 HowtoDrupal.md | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/HowtoDrupal.md b/HowtoDrupal.md
index c259a8f3..3d96506b 100644
--- a/HowtoDrupal.md
+++ b/HowtoDrupal.md
@@ -5,4 +5,12 @@ title: Howto Drupal
 
 # Install
 
-# Tips 
\ No newline at end of file
+# Tips 
+
+# CVE-2018-7600 // SA-CORE-2018-002
+
+Règle mod_security de protection (théorique)
+
+~~~
+SecRule ARGS_GET_NAMES|ARGS_POST_NAMES|REQUEST_COOKIES_NAMES "^#" "t:none,log,deny,msg:'CVE-2018-7600/Drupal-SA-CORE-2018-002 -- Deny # in (cookie|query|post) names',id:300000001"
+~~~
\ No newline at end of file