feat(934100): added sequence for CVE-2025-55182 POCs#4372
Conversation
|
📊 Quantitative test results for language: |
|
Thank you @touchweb-vincent. This looks good. Are there situations where I'd say yes, but it's much more likely an information leakage we want to avoid. But let's have the conversation on record. |
|
@dune73 Maybe, I don’t know the NodeJS ecosystem very well, but it's already caught by 941390 - I hadn’t checked before. So I removed it. |
EsadCetiner
left a comment
There was a problem hiding this comment.
Looks ready to merge
Can you add the non-encoded payloads within the test description?
I think it's fine to detect console.log even though it's not particularly harmful, it shouldn't cause false positives anyways since it's a very specific string. It's still a general indicator of attack.
|
Done @EsadCetiner - in a comment like this one:
|
|
@touchweb-vincent Sorry, I'm not sure what change your exactly trying to make. What's wrong with just adding console.log like in your earlier commit? |
|
Following our discussion on Slack, it's done. Thanks for the help. |
Hello,
Here is a proposal to address some POCs seen by @RedXanadu and shared on the Slack.
This should improve (a bit) the CRS coverage for CVE-2025-55182 on PL1
For console.log, we have an existing ra block for console. but i failed to understand how add log on console-funcs variableAlready caught by 941390What do you think ?