adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
309876f2f6d6f94de80900b1aa9a716aabbad391
metasploit-gs/spec/lib/msf/core/exploit/http
T
History
wchen-r7 47d52a250e Fix #6806 and #6820 - Fix send_request_cgi! redirection 
This patch fixes two problems:

1. 6820 - If the HTTP server returns a relative path
   (example: /test), there is no host to extract, therefore the HOST
   header in the HTTP request ends up being empty. When the web
   server sees this, it might return an HTTP 400 Bad Request, and
   the redirection fails.

2. 6806 - If the HTTP server returns a relative path that begins
   with a dot, send_request_cgi! will literally send that in the
   GET request. Since that isn't a valid GET request path format,
   the redirection fails.

Fix #6806
Fix #6820
2016-04-25 14:30:46 -05:00
..
jboss
example_group and hook_scope conversions
2015-12-31 16:56:13 -06:00
joomla
example_group and hook_scope conversions
2015-12-31 16:56:13 -06:00
wordpress
example_group and hook_scope conversions
2015-12-31 16:56:13 -06:00
client_spec.rb
Fix #6806 and #6820 - Fix send_request_cgi! redirection
2016-04-25 14:30:46 -05:00
server_spec.rb
use explicit exceptions for raise_error
2015-12-10 21:47:22 -06:00
typo3_spec.rb
decribe -> RSpec.describe
2015-12-10 21:47:22 -06:00