Port patterns from 18_HTTP_send_file.rule

[dmajda]

We need to port patterns form the rules/18_HTTP_send_file.rule file from the old scanner:

Desc: HTTP send file to Client (MIME-Sniffing, Info disclosure)

# impact        CWE identifier          regex
medium          CWE-115,CWE-200         send_file.*:disposition\s*=>\s*\'inline\'
medium          CWE-115,CWE-200         send_data.*:disposition\s*=>\s*\'inline\'
high            CWE-201                 send_file.*params\s*\[

[dmajda]

medium          CWE-115,CWE-200         send_file.*:disposition\s*=>\s*\'inline\'
medium          CWE-115,CWE-200         send_data.*:disposition\s*=>\s*\'inline\'

Implemented by XssSendCheck.

@LTe The check as it is written now only finds send_file and send_data calls with one option. For example, this call won't be found:

send_file '/path/to.jpeg', :type => 'image/jpeg', :disposition => 'inline'

Could you please extend it to find calls with more options too?

high            CWE-201                 send_file.*params\s*\[

@LTe Not implemented?

[dmajda]

Issues fixed by #91, closing.