Closed davidjiglesias closed 4 years ago
We have a regex validation stopping some input values for q parameter:
Filter by mtime or date (any operator):
GET /syscheck/003 { "q":"mtime=2006-05-07 09:28:01" } { "error": 622, "message": "Param not valid. Review queries documentation: https://documentation.wazuh.com/current/user-manual/api/queries.html. Field: q", "data": false }
File When include slash:
GET /syscheck/003 { "q":"file!=/usr/bin/c89-gcc" } { "error": 622, "message": "Param not valid. Review queries documentation: https://documentation.wazuh.com/current/user-manual/api/queries.html. Field: q", "data": false }
We shall adapt the input validation regex to accept some other characters such as : or %
We have a regex validation stopping some input values for q parameter:
Filter by mtime or date (any operator):
File When include slash:
We shall adapt the input validation regex to accept some other characters such as : or %