-
-
Notifications
You must be signed in to change notification settings - Fork 407
feat: added detection for RCE via Referer header #3993
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
feat: added detection for RCE via Referer header #3993
Conversation
📊 Quantitative test results for language: |
Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>
Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>
Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>
Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>
Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>
Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>
Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>
@theseion LGTM :) |
Will check, need a little time though. |
@Xhoenix You are doing double URL decode using |
Also, i don't think we need such a complex rule for this. According to RFC 9110, |
I checked the RFC 9110 and Referer header must not contain fragments. I think we should just update rule |
@theseion You forgot this comment. |
No, as I wrote above, I think we need an additional rule because 932200 doesn't check the Referer header:
|
You probably misread: |
So we'll have everything covered except for the URI itself in the Referer header. You were right @Xhoenix. |
Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>
tests/regression/tests/REQUEST-932-APPLICATION-ATTACK-RCE/932207.yaml
Outdated
Show resolved
Hide resolved
Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>
…07.yaml Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>
tests/regression/tests/REQUEST-932-APPLICATION-ATTACK-RCE/932207.yaml
Outdated
Show resolved
Hide resolved
Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>
Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thanks @Xhoenix!
Fixes #3498