Remove redundant escaping in regex (#929)

2021-02-11 16:13:38 +02:00
parent 00c4be63f0
commit 215b3b4e78
1 changed files with 1 additions and 1 deletions
--- a/webgoat-lessons/cross-site-scripting/src/main/java/org/owasp/webgoat/xss/CrossSiteScriptingLesson5a.java
+++ b/webgoat-lessons/cross-site-scripting/src/main/java/org/owasp/webgoat/xss/CrossSiteScriptingLesson5a.java
@ -39,7 +39,7 @@ import java.util.regex.Pattern;
 public class CrossSiteScriptingLesson5a extends AssignmentEndpoint {

    public static final Predicate<String> XSS_PATTERN = Pattern.compile(
-            ".*<script>(console\\.log|alert)\\(.*\\);?<\\/script>.*"
+            ".*<script>(console\\.log|alert)\\(.*\\);?</script>.*"
            , Pattern.CASE_INSENSITIVE).asMatchPredicate();
    @Autowired
    UserSessionData userSessionData;