search

w-digital-scanner / w13scan

Passive Security Scanner (被动式安全扫描器)
GNU General Public License v2.0
1.9k stars 360 forks source link

Unhandled exception (#dae542e4) #448

Closed sqlmapreporter closed 3 years ago

sqlmapreporter commented 3 years ago 
W13scan plugin traceback:
Running version: 2.2.0
Python version: 3.8.7
Operating system: Linux-5.9.0-kali5-amd64-x86_64-with-glibc2.29

request raw:
GET /security-incident 1.1
Host: www.hackerone.com
Connection: keep-alive
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (iPad; CPU OS 11_0 like Mac OS X) AppleWebKit/604.1.34 (KHTML, like Gecko) Version/11.0 Mobile/15A5341f Safari/604.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: none
Sec-Fetch-Mode: navigate
Sec-Fetch-User: ?1
Sec-Fetch-Dest: document
Accept-Encoding: gzip, deflate, 
Accept-Language: zh-CN
cookie: *
Traceback (most recent call last):
  File "/home/rock/tools/w13scan/W13SCAN/lib/core/plugins.py", line 158, in execute
    output = self.audit()
  File "/home/rock/tools/w13scan/W13SCAN/scanners/PerFile/ssti.py", line 89, in audit
    r1 = self.test_ssti(data, k, positon)
NameError: name 'positon' is not defined
boy-hack commented 3 years ago

closed #446