From 0ae2fe3c850683ffe129a267f90e38e9a9ed11ef Mon Sep 17 00:00:00 2001
From: Ice3man <nizamulrana@gmail.com>
Date: Wed, 27 May 2020 21:38:40 +0530
Subject: [PATCH] Better regex for CRLF injection that catches whitespaces

---
 vulnerabilities/crlf-injection.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/vulnerabilities/crlf-injection.yaml b/vulnerabilities/crlf-injection.yaml
index dbe269a3c2..51d297d764 100644
--- a/vulnerabilities/crlf-injection.yaml
+++ b/vulnerabilities/crlf-injection.yaml
@@ -13,5 +13,5 @@ requests:
     matchers:
       - type: regex
         regex:
-          - "(^Set-Cookie:|;(| ))( |)crlfinjection=crlfinjection($|;)"
+          - "^(?:Set-Cookie\s?:|;)\s?crlfinjection=crlfinjection(?:$|;)"
         part: header