Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [NSE] A few fixes for http-rfi-spider.nse

From: Daniel Miller <bonsaiviking () gmail com>
Date: Wed, 15 Oct 2014 13:37:44 -0500
On Wed, Sep 10, 2014 at 6:03 PM,  <nnposter () users sourceforge net> wrote:

The reporting of vulnerable parameters from the query string appears
to be broken.

The default URL for file inclusion (http-rfi-spider.inclusionurl) is no
longer suitable for the script.

The patch below provides a more robust path construction for submitting
forms by offloading the logic to url.absolute().



nnposter,

Thanks again for a great improvement. This one is r33727, and greatly
appreciated.

Dan
_______________________________________________
Sent through the dev mailing list
http://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: