Andres, O, it is really interesting question and I spent some time to "remembering" meaning of it! :) It is used in case of checkboxes. Every checkbox makes 2 variant: - value will send if checked - nothing will send So secret_value is for this case. Secret value is substitute for unchecked checkbox. So in final stage I removed such checkboxes from results.
> > Do you remember why we added the "secret value" to the form.py [0]? > > """ > # This is used for processing checkboxes > self._secret_value = "3_!21#47w@" > ... > ... > if value not in self._selects[name]: > self._selects[name].append(value) > self._selects[name].append(self._secret_value) > """ > > [0] > https://sourceforge.net/apps/trac/w3af/browser/trunk/core/data/dc/form.py > > Regards, > -- > Andrés Riancho > Director of Web Security at Rapid7 LLC > Founder at Bonsai Information Security > Project Leader at w3af -- Taras http://oxdef.info ------------------------------------------------------------------------------ The Next 800 Companies to Lead America's Growth: New Video Whitepaper David G. Thomson, author of the best-selling book "Blueprint to a Billion" shares his insights and actions to help propel your business during the next growth cycle. Listen Now! http://p.sf.net/sfu/SAP-dev2dev _______________________________________________ W3af-develop mailing list W3af-develop@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/w3af-develop
