Am 23.12.2011 02:16, schrieb Andres Riancho: > Taras, > > On Wed, Dec 21, 2011 at 6:07 AM, Taras <ox...@oxdef.info> wrote:
>>> #APR: Do we want to call _createUrlPartsMutants for all freq? Does it make >>> sense to fuzz the URL when >>> there are query string parameters? Hmmm... we should think about this. >> >> Why not? For example, http://exmaple.com/foo/bar/5?sort=desc > > My point is that if the URL has parameters it is VERY UNLIKELY that it > will also use url-rewrites. Correct? no, incorrect. At least some SAP systems do it, like /sap(b2JzY3VyZT1zZWN1cml0eSZtZWE9Y3VscGE=)/myapplications/foo/bar?whatever Which means that you have + some kind of URL parameter (b2JzY3VyZT1zZWN1cml0eSZtZWE9Y3VscGE=) + INFO_PATH (probably) + search parameter Achim ------------------------------------------------------------------------------ Write once. Port to many. Get the SDK and tools to simplify cross-platform app development. Create new or port existing apps to sell to consumers worldwide. Explore the Intel AppUpSM program developer opportunity. appdeveloper.intel.com/join http://p.sf.net/sfu/intel-appdev _______________________________________________ W3af-develop mailing list W3af-develop@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/w3af-develop
