mirror of
https://github.com/elicpeter/nyx.git
synced 2026-06-06 19:35:13 +02:00
9 lines
410 B
Ruby
9 lines
410 B
Ruby
# Unsafe: tainted request value flows into the bare-subscript header set
|
|
# `response.headers["X-Forwarded-By"] = lang`. The LHS-subscript
|
|
# classification path matches `response.headers` as a HEADER_INJECTION
|
|
# sink so this form fires alongside the explicit `set_header` /
|
|
# `add_header` method-call shapes.
|
|
def handle(params, response)
|
|
lang = params["lang"]
|
|
response.headers["X-Forwarded-By"] = lang
|
|
end
|