Merge pull request #8608 from msm1992/3.2.0-7960

[3.2.0] Fix regex in gateway threat protection doc
wso2 · Nov 12, 2024 · adeb975 · adeb975
2 parents 6185438 + 844c6fd
commit adeb975
Showing 1 changed file with 7 additions and 3 deletions.
diff --git a/...teway/threat-protectors/regular-expression-threat-protection-for-api-gateway.md b/...teway/threat-protectors/regular-expression-threat-protection-for-api-gateway.md
@@ -50,15 +50,19 @@ We recommend the following patterns for blacklisting.
         <tr class="even">
             <td>XPath Injection</td>
             <td>
-                <code>.*'.*|.*or.*|.*1=1.*|.*ALTER.*|.*ALTER TABLE.*|.*ALTER VIEW.*|</code><br />
+                <code>.*'.*|(?\u003C![\w\d])or(?![\w\d])|.*1=1.*|.*ALTER.*|.*ALTER TABLE.*|.*ALTER VIEW.*|</code><br />
                 <code>.*CREATE DATABASE.*|.*CREATE PROCEDURE.*|.*CREATE SCHEMA.*|</code><br />
                 <code>.*create table.*|.*CREATE VIEW.*|.*DELETE.*|.*DROP DATABASE.*|</code><br />
                 <code>.*DROP PROCEDURE.*|.*DROP.*|.*SELECT.*</code>
             </td>
         </tr>
         <tr class="odd">
-            <td>Javascript Exception</td>
-            <td><p><code>&lt;\s*script\b[^&gt;]*&gt;[^&lt;]+&lt;\s*/\s*script\s*&gt;</code></p></td>
+            <td>JavaScript Injection</td>
+            <td><p>
+                ```
+                &lt;\s*script\b[^&gt;]*&gt;[^&lt;]+&lt;\s*/\s*script\s*&gt;
+                ```
+            </p></td>
         </tr>
         <tr class="even">
             <td>XPath Expanded Syntax Injection</td>