[BUG] HTML Injection Module Not Working

[XDark187]

What happened?

It seems that injecting html code using the web UI adds a double quotation marks to the injected html code which makes it useless, but injecting it from the docker compose using INJECT_HEAD env var works perfectly.

Example 1:

Example 2:

Also, when I try to inject <script></script> I get redirected to an invalid page.

How to reproduce?

Using the web UI, go to the settings page of any service, then go to the HTML injection module, fill the INJECT_BODY or INJECT_HEAD with any simple html code.
Finally, visit the website to check if it it's working or not.

Configuration file(s) (yaml or .env)

Irrelevant, I've tried with a fresh install of bunkerweb and the issue still exists

Relevant log output

No errors or warnings

BunkerWeb version

1.6.1

What integration are you using?

Docker

Linux distribution (if applicable)

Debian Bookworm

Removed private data

• I have removed all private data from the configuration file and the logs

Code of Conduct

• I agree to follow this project's Code of Conduct

[TheophileDiot]

Hi @XDark187, this is a known bug on the 1.6.1 that the settings are sanitized. Can you try again on the latest release candidate ? Thank you!