Make sure md_debug exploit only works on Markdown files

oguzhalit · Sep 4, 2016 · 76a09b0 · 76a09b0
1 parent 6c42756
commit 76a09b0
Showing 1 changed file with 5 additions and 0 deletions.
diff --git a/test/server/fileServingSpec.js b/test/server/fileServingSpec.js
@@ -91,6 +91,11 @@ frisby.create('GET the 2013 coupon code file by appending md_debug parameter wit
  .expectBodyContains('n<MibgC7sn')
  .toss();
 
+frisby.create('GET the package.json file does not fall for appending md_debug parameter with value fulfilling filename validation')
+ .get(URL + "/ftp/package.json.bak?md_debug=.md")
+ .expectStatus(403)
+ .toss();
+
 frisby.create('GET the package.json file by using an encoded Poison Null Byte attack with .pdf suffix')
  .get(URL + "/ftp/package.json.bak%2500.pdf")
  .expectStatus(200)