Feature #2483
Investigate and potentially change occurrences of xml_encode to Rex::Text::xml_char_encode
| Status: | Rejected | Start date: | 09/02/2010 | |
|---|---|---|---|---|
| Priority: | Normal | Due date: | ||
| Assignee: | - | % Done: | 0% |
|
| Category: | modules - exploits | |||
| Target version: | - | |||
| Resolution: | worksforme | How To Use: | ||
| Release Note: |
Description
Care must be taken not to reduce reliability and/or break these exploits. If testing with the change is successful, make the change!
History
Updated by Joshua J. Drake over 1 year ago
It may also make sense to add a charset (like badchars) to some of the functions in Rex::Text.
While it will further slow them down, it will also allow configurable opt-in/out for encoding certain characters. A good example is whether or not to encode the space (0x20) character.
A reasonable default should be used. The current 0x20..0x7e is probably ok.
Updated by Joshua J. Drake 11 months ago
- Assignee deleted (
Joshua J. Drake)
Updated by Tod Beardsley 4 months ago
- Status changed from New to Rejected
- Resolution set to worksforme
- 10 set to 0
Doesn't seem necessary