fix: add ARGS to sanitize list only if it's not added yet

2025-09-30 11:44:32 +03:00 · 2025-05-19 10:53:50 +02:00
parent 7d738112d3
commit fdfc2d5b21
4 changed files with 5 additions and 1 deletions
--- a/apache2/msc_parsers.c
+++ b/apache2/msc_parsers.c
@@ -350,6 +350,7 @@ void add_argument(modsec_rec *msr, apr_table_t *arguments, msc_arg *arg)
    assert(msr != NULL);
    assert(arguments != NULL);
    assert(arg != NULL);
+    arg->marked_for_sanitization = 0;
    if (msr->txcfg->debuglog_level >= 5) {
        msr_log(msr, 5, "Adding request argument (%s): name \"%s\", value \"%s\"",
                arg->origin, log_escape_ex(msr->mp, arg->name, arg->name_len),