web_spider doesn't care about url like ?page=

andresriancho / w3af

w3af: web application attack and audit framework, the open source web vulnerability scanner.

http://w3af.org/

4.56k stars 1.22k forks source link

web_spider doesn't care about url like ?page= #18182

Open NoamHamnich opened 5 years ago

NoamHamnich commented 5 years ago

When a website use GET page parameter to navigate, web_spider doesn't save pages.

Example : If we have a page "/index.php?page=login" with a form with sql injection vulnerability, web_spider will save "/index.php" so this page will never be test.

Same for url like /start.mvc#/ web_spider will only take /start.mvc

andresriancho commented 5 years ago

@nobox14 thanks for the bug report!

For /start.mvc#/ I can understand it because w3af ignores everything after the # in URLs. This should change after the JS support is implemented.

On the other hand... ignoring ?page=login should never happen. Do you have a site which I can scan to reproduce the issue?

NoamHamnich commented 5 years ago

Well, for ?page=login, it was on OWASP Mutillidae II https://github.com/webpwnized/mutillidae