Felipe Zipitría

Signed-off-by: Felipe Zipitria - updates sqlite cli commands list. Fixes #2800

### Description This comes from BB finding 9P5LL13Y: - Possible RCE bypass using `echo "foo;whxam"i | tr x o | sh #"` We need to probably extend one of our...

### Description Backticks can be used in shell, perl and/or php execution. We are not covering all cases for double backticks right now, we need to craft or extend an...

### Description This one comes from finding OI91S27Z. Python 2 will support `local_file://` as a valid url scheme. ### Proposed solution - add `local_file` to the `url_schemes.data` list - write...

test(ssrf): adds coverage for IN2OZO3N

5

Signed-off-by: Felipe Zipitria Adds coverage for IN2OZO3N BB finding.

feat(list): update lfi-os-files

1

- use Daniel Meissler's Fuzzing/LFI Fixes #2649 Signed-off-by: Felipe Zipitria

Dissasemble regexes in rules 941210 and 941220

2

### Motivation All regexes should be generated using regexp-assembly. ### Proposed solution Dissasemble the regexp in rules 941210 and 941220.

Add exclusion set for OData standard

17

### Motivation [OData (Open Data Protocol)](https://www.odata.org/) is an ISO/IEC approved, OASIS standard that defines a set of best practices for building and consuming RESTful APIs. Its usage of common wording,...

Additional plugins syncying between repos

8

After doing a review on plugins, repos and related stuff (docker images), we need to see if the documentation on plugins match for the `documentation` project, the docker container that...

## Description ``` func (a *allowFn) Evaluate(r *coraza.Rule, tx *coraza.Transaction) { // TODO implement this: /* if a.allow == 1 { tx.RuleEngine = coraza.RULE_ENGINE_OFF } else if a.allow == 2...