fix: add ARGS to sanitize list only if it's not added yet

2025-09-30 11:44:32 +03:00 · 2025-05-19 10:53:50 +02:00
parent 7d738112d3
commit fdfc2d5b21
4 changed files with 5 additions and 1 deletions
--- a/apache2/msc_json.c
+++ b/apache2/msc_json.c
@@ -70,6 +70,7 @@ int json_add_argument(modsec_rec *msr, const char *value, unsigned length)
        return 0;
    }

+    arg->marked_for_sanitization = 0;
    apr_table_addn(msr->arguments,
        log_escape_nq_ex(msr->mp, arg->name, arg->name_len), (void *) arg);