mirror of
https://github.com/elicpeter/nyx.git
synced 2026-06-15 20:05:13 +02:00
new capacity bits (#67)
This commit is contained in:
Eli Peter
GitHub
parent
afaffc0df6
commit
7d0e7320e2
261 changed files with 10591 additions and 231 deletions
13
tests/fixtures/header_injection/python/unsafe_subscript_set.py
vendored
Normal file
13
tests/fixtures/header_injection/python/unsafe_subscript_set.py
vendored
Normal file
|
|
@ -0,0 +1,13 @@
|
|||
# Unsafe: tainted request value flows into the bare-subscript header set
|
||||
# `response.headers["X-Forwarded-By"] = lang`. The LHS-subscript
|
||||
# classification path matches `response.headers` / `resp.headers` as a
|
||||
# HEADER_INJECTION sink so this form fires alongside the explicit
|
||||
# `headers.add` / `set_cookie` method-call shapes.
|
||||
from flask import request, make_response
|
||||
|
||||
|
||||
def handler():
|
||||
lang = request.args.get("lang")
|
||||
response = make_response("ok")
|
||||
response.headers["X-Forwarded-By"] = lang
|
||||
return response
|
||||
Loading…
Add table
Add a link
Reference in a new issue