github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-09-29 19:24:29 +03:00
Code Issues Packages Projects Releases Wiki Activity

Adds support to custom operator's message in case of a match

Browse Source
This commit is contained in:
Felipe Zimmerle
2016-09-12 15:40:03 -03:00
parent ad61838118
commit 0a22f880dd
6 changed files with 34 additions and 22 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
src/operators/detect_sqli.h
View File

@@ -28,7 +28,9 @@ class DetectSQLi : public Operator {
public:
/** @ingroup ModSecurity_Operator */
DetectSQLi(std::string op, std::string param, bool negation)
: Operator(op, param, negation) { }
: Operator(op, param, negation) {
m_match_message.assign("detected SQLi using libinjection.");
}
bool evaluate(Transaction *transaction, const std::string &input);
};

4
src/operators/detect_xss.h
View File

@@ -27,7 +27,9 @@ class DetectXSS : public Operator {
public:
/** @ingroup ModSecurity_Operator */
DetectXSS(std::string op, std::string param, bool negation)
: Operator(op, param, negation) { }
: Operator(op, param, negation) {
m_match_message.assign("detected XSS using libinjection.");
}
bool evaluate(Transaction *transaction, const std::string &input);
};

2
src/operators/operator.h
View File

@@ -50,6 +50,8 @@ class Operator {
virtual bool evaluate(Transaction *transaction, const std::string &str);
static Operator *instantiate(std::string op);
std::string m_match_message;
protected:
bool debug(Transaction *transaction, int x, std::string a);
};