admin/nuclei-templates
1
0
Fork 0
mirror of https://github.com/projectdiscovery/nuclei-templates.git synced 2026-01-31 15:53:33 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
df18eac3a070eff09422b31edda9fd8341bce057
nuclei-templates/dast
History
686f6c61 df18eac3a0 fix(xinclude-injection): reduce false positives with stricter regex 
The previous regex 'root:.*?:[0-9]*:[0-9]*:' was too permissive and matched
content in minified JavaScript code, causing false positives.

Changed to 'root:[^:]*:\d+:\d+:' which:
- Uses [^:]* to only match non-colon characters (respects passwd delimiter)
- Uses \d+ to require at least one digit for UID/GID

Fixes #14775
2026-01-18 13:29:29 +01:00
..
ai
chore: sign templates 🤖
2025-12-09 04:07:08 +00:00
cves
chore: sign templates 🤖
2026-01-18 07:01:37 +00:00
vulnerabilities
fix(xinclude-injection): reduce false positives with stricter regex
2026-01-18 13:29:29 +01:00