描述:如果在输入中的任何位置找到参数字符串(带有字边界),则返回true。在比较之前对参数字符串执行宏扩展。


例:


#在ARGS的任何地方检测是否包含“select”字符串

SecRule ARGS“@containsWord select”“id:151”

以下输入内容将会成功匹配包含“select”字符串-

-1 union select BENCHMARK(2142500,MD5(CHAR(115,113,108,109,97,112))) FROM wp_users WHERE ID=1 and (ascii(substr(user_login,1,1))&0x01=0) from wp_users where ID=1--


但以下内容却会被匹配为不包含“select”字符串-

Your site has a wide selection of computers.



Created with the Personal Edition of HelpNDoc: Easy EPub and documentation editor