github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-09-29 11:16:33 +03:00
Code Issues Packages Projects Releases Wiki Activity

Change jsDecodeuni to jsDecode which also decodes all the other JS escapes. See #193.

Browse Source
This commit is contained in:
brectanus
2007-12-14 00:19:46 +00:00
parent b0de659133
commit 8aa31fd099
5 changed files with 113 additions and 45 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
doc/modsecurity2-apache-reference.xml
View File

@@ -3369,13 +3369,12 @@ SecRule <emphasis>XML:/xq:employees/employee/name/text()</emphasis> Fred \
</section>
<section>
<title><literal>jsDecodeUni</literal></title>
<title><literal>jsDecode</literal></title>
<para>Decodes <literal moreinfo="none">\uXXXX</literal> JavaScript
encoding. If the code is in the range of FF01-FF5E (the full width ASCII
codes), then the higher byte is used to detect and adjust the lower
byte. Otherwise, only the lower byte will be used and the higher byte
zeroed.</para>
<para>Decodes JavaScript escape sequences. If a \uHHHH code is in the
range of FF01-FF5E (the full width ASCII codes), then the higher byte is
used to detect and adjust the lower byte. Otherwise, only the lower byte
will be used and the higher byte zeroed.</para>
</section>
<section>