When two urls are identified that have different parameter values, Scumblr creates a new vulnerability instead of deduplicating. This is because the old comparison just looked at an exact match of the URLs. This PR parses the URL and plucks out every query parameter. Regardless of parameter order or parameter values, it will deduplicate if all params, path, domain match.
Tests were added to assert this works correctly. This should help dedupliate vulns from scan engines that use nonces in parameter values.
When two urls are identified that have different parameter values, Scumblr creates a new vulnerability instead of deduplicating. This is because the old comparison just looked at an exact match of the URLs. This PR parses the URL and plucks out every query parameter. Regardless of parameter order or parameter values, it will deduplicate if all params, path, domain match.
Tests were added to assert this works correctly. This should help dedupliate vulns from scan engines that use nonces in parameter values.