nbs-system / naxsi

NAXSI is an open-source, high performance, low rules maintenance WAF for NGINX
GNU General Public License v3.0
4.8k stars 606 forks source link

Update erroneous regex for double encoded values in cookies (1315) #415

Closed rhowe-gds closed 6 years ago

rhowe-gds commented 6 years ago

%[2|3] matches %2, %| and %3

What I think was intended was to match either %2 or %3

Fix the regex accordingly.

buixor commented 6 years ago

looks good to me :)

jvoisin commented 6 years ago

Thank you ♥