Fix parser differential caused by URI fragment truncation

[Easton97-Jens]

Motivation

• Prevent a parser differential where bytes after a literal # in the request-target are removed from REQUEST_URI, QUERY_STRING, and ARGS_GET while backends/connectors may still see them.
• Restore consistent inspection so attacker-controlled query data after # is not hidden from standard ModSecurity variables.

Description

• Remove the unconditional truncation of the request URI at the first literal # in Transaction::processURI so subsequent decoding and query extraction use the full received request-target (src/transaction.cc).
• Keep the change minimal and localized to processURI so REQUEST_URI_RAW and REQUEST_LINE behavior is unchanged while REQUEST_URI, QUERY_STRING, and ARGS_GET are populated from the full URI.

Testing

• No automated tests were executed in this environment against the modified code.
• An automated build/configure attempt previously failed in this environment due to a missing others/libinjection submodule, preventing running the repository's full regression harness, so CI/regression tests should be run externally after this change.

---

Codex Task

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud