From 77ee328b701715284c45ee0b1f317a3331f23e98 Mon Sep 17 00:00:00 2001 From: x3rz Date: Fri, 4 Jun 2021 06:06:37 -0400 Subject: [PATCH] command injection bypass fix in sanitize.py --- lockdoors/sanitize.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/lockdoors/sanitize.py b/lockdoors/sanitize.py index 91be098..4683b3a 100644 --- a/lockdoors/sanitize.py +++ b/lockdoors/sanitize.py @@ -1,6 +1,6 @@ # input sanitization function def bash_escape_restrictor(data): - escape_list = [";","&","|","*"," "] + escape_list = [";","&","|","*"," ","`"] for charecter in data: if charecter in escape_list: data = data.split(charecter)[0]