Thanks to visit codestin.com Credit goes to github.com
We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
There was an error while loading. Please reload this page.
1 parent 780dbd1 commit 7fc9e82Copy full SHA for 7fc9e82
1 file changed
lib/core/common.py
@@ -561,7 +561,7 @@ def paramToDict(place, parameters=None):
561
562
if condition:
563
testableParameters[parameter] = "=".join(parts[1:])
564
- if not conf.multipleTargets:
+ if not conf.multipleTargets and not (conf.csrfToken and parameter == conf.csrfToken):
565
_ = urldecode(testableParameters[parameter], convall=True)
566
if (_.strip(DUMMY_SQL_INJECTION_CHARS) != _\
567
or re.search(r'\A9{3,}', _) or re.search(DUMMY_USER_INJECTION, _))\
0 commit comments