CVE-2026-21876: OWASP Modsecurity CRS WAF bypass blogpost is out!

The vulnerability was discovered by daytriftnewgen and fixed by fzipi and airween in the latest patch. submitted by /u/sea_horse1849