Dear Experts, I am trying to write HTTP Parameter Pollution Audit Plugin. The idea is : Try to send sth like : name=Spring&name=Summer Check the response for : name=Spring,Summer => VULN is it an acceptable idea ?
And, IF the above idea is acceptable, I have problem with creating mutants. How to create mutant with name=Spring&name=Summer ? Do I have to create a new fuzzer-like file to get new Createmutant fuction ? Can you give me some advices ? Thank you very much... -- Best Regards, Summer Nguyen .
------------------------------------------------------------------------------
_______________________________________________ W3af-develop mailing list W3af-develop@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/w3af-develop