I was able to solve a false positive with these two methods, but they
seemed to broad to me:
SecRule REQUEST_URI "/newthread.php.*"
However, I am not able to limit the scope of this rule. I tried this, but
it doesn't prevent the false positive.
# SecRule REQUEST_URI "/newthread.php.*"
Is it possible to limit the scope more on a server that has many virtual
CONFIDENTIALITY NOTICE: The information contained in this transmission may
contain privileged and confidential information. It is intended only for
the use of the person(s) named above. If you are not the intended
recipient, please contact the sender by reply email and permanently delete
the original message.