github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-08-14 05:45:59 +03:00
Code Issues Packages Projects Releases Wiki Activity

fix: add ARGS to sanitize list only if it's not added yet in case of sanitizeArg

Browse Source
This commit is contained in:
Ervin Hegedus 2025-05-24 12:04:39 +02:00
parent a217cb1056
commit 614c6e18a7
No known key found for this signature in database
GPG Key ID: 5FA5BC3F5EC41F61
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
apache2/re_actions.c
View File

@ -1455,8 +1455,9 @@ static apr_status_t msre_action_sanitizeArg_execute(modsec_rec *msr, apr_pool_t
for (i = 0; i < tarr->nelts; i++) {
msc_arg *arg = (msc_arg *)telts[i].val;
if (strcasecmp(sargname, arg->name) == 0) {
if (arg->marked_for_sanitization == 0 && strcasecmp(sargname, arg->name) == 0) {
apr_table_addn(msr->arguments_to_sanitize, arg->name, (void *)arg);
arg->marked_for_sanitization = 1;
}
}