Fix CVE-2011-0447 check

move it outside of conditional
19test · Oct 27, 2016 · 5bbc529 · 5bbc529
1 parent 6dcf64a
commit 5bbc529
Showing 1 changed file with 4 additions and 3 deletions.
diff --git a/lib/brakeman/checks/check_forgery_setting.rb b/lib/brakeman/checks/check_forgery_setting.rb
@@ -38,9 +38,10 @@ def run_check
           csrf_warning args
         end
 
-        if controller.options[:protect_from_forgery]
-          check_cve_2011_0447
-        end
+      end
+
+      if controller.options[:protect_from_forgery]
+        check_cve_2011_0447
       end
     end
   end