Skip to content

Commit

Permalink
fix: typo in language name
Browse files Browse the repository at this point in the history 
Co-authored-by: elsapet <[email protected]>
  • Loading branch information
@didroe @elsapet
didroe and elsapet authored May 20, 2024
1 parent 1d92c7f commit e0737ed
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion rules/python/lang/http_response_splitting.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -53,7 +53,7 @@ metadata:
## Remediations
- **Do not** include user input in cookies or other HTTP headers without proper sanitization. This can prevent attackers from exploiting the input to manipulate the response.
- **Do** remove CRLF sequences from user input to mitigate the risk of response splitting and XSS attacks. Use the following code snippet as a reference for sanitizing input in Java:
- **Do** remove CRLF sequences from user input to mitigate the risk of response splitting and XSS attacks. Use the following code snippet as a reference for sanitizing input in Python:
```python
input = request.getParameter("data");
var sanitized = input.replaceAll("\r\n", "");
Expand Down

0 comments on commit e0737ed

Please sign in to comment.