Tests URLs for Local File Inclusion (LFI), Remote File Inclusion (RFI), SQL injection (SQLi), and Cross Site Scripting (XSS), Server Side Template Injection (SSTI), and Open Redirects.
Enhance the regexes used in OpenRedirect#vulnerable? to detect when an additional string is appended to the test URL (ex: .html). It's possible to ignore the additional appended string using a ?, &, or # character.
postmodern
commented
5 months ago
Enhance the regexes used in
OpenRedirect#vulnerable?to detect when an additional string is appended to the test URL (ex:.html). It's possible to ignore the additional appended string using a?,&, or#character.