From aed5e5bea0eaeb6206022211566940ba30ecf5f2 Mon Sep 17 00:00:00 2001
From: Steve Pinkham <steve.pinkham@gmail.com>
Date: Mon, 30 Aug 2010 20:43:46 -0400
Subject: [PATCH] 1.63b:  WordPress param injection fixes

Changed param injection check slightly to work better with
WordPress.
---
 ChangeLog | 5 +++++
 Makefile  | 2 +-
 config.h  | 1 +
 crawler.c | 2 +-
 4 files changed, 8 insertions(+), 2 deletions(-)

diff --git a/ChangeLog b/ChangeLog
index aaadc7c..a24aaf1 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,8 @@
+Version 1.63b:
+--------------
+
+  - Changed param injection check slightly to work better with WordPress.
+
 Version 1.62b:
 --------------
 
diff --git a/Makefile b/Makefile
index f7d9045..9c55c40 100644
--- a/Makefile
+++ b/Makefile
@@ -20,7 +20,7 @@
 #
 
 PROGNAME   = skipfish
-VERSION    = 1.62b
+VERSION    = 1.63b
 
 OBJFILES   = http_client.c database.c crawler.c analysis.c report.c
 INCFILES   = alloc-inl.h string-inl.h debug.h types.h http_client.h \
diff --git a/config.h b/config.h
index 6cdbb50..833da3f 100644
--- a/config.h
+++ b/config.h
@@ -96,6 +96,7 @@
 /* Crawler / probe constants: */
 
 #define BOGUS_FILE     "sfi9876"        /* Name that should not exist      */
+#define BOGUS_PARAM    "9876sfi"        /* Meaningless parameter           */
 #define MAX_404        4                /* Maximum number of 404 sigs      */
 #define PAR_MAX_DIGITS 6                /* Max digits in a fuzzable int    */
 #define PAR_INT_FUZZ   100              /* Fuzz by + / - this much         */
diff --git a/crawler.c b/crawler.c
index bef2fbe..41fdc7c 100644
--- a/crawler.c
+++ b/crawler.c
@@ -1504,7 +1504,7 @@ static void crawl_parametric_init(struct pivot_desc* pv) {
   for (i=0;i<BH_CHECKS;i++) {
     n = req_copy(pv->req, pv, 1);
     ck_free(TPAR(n));
-    TPAR(n) = ck_strdup((u8*)BOGUS_FILE);
+    TPAR(n) = ck_strdup((u8*)BOGUS_PARAM);
     n->callback = par_check_callback;
     n->user_val = i;
     async_request(n);