wellton/hhvm
1
0
Fork 0
Código Issues Pull Requests Ações Pacotes Projetos Versões Wiki Atividade

Don't send URL in redirect body

Ver Código-Fonte 
If you put a CR in the redirect URL, the response splitting protection refuses to send the Location header, and the body is rendered in the browser; instant xss. It would not surprise me if some browsers ignore the Location header for less obviously broken URLs, so let's just remove the URL entirely.
Esse commit está contido em:
Erling Ellingsen
2013-04-23 20:47:42 -07:00
commit de Sara Golemon
pai 51807939d1
commit 48e0cf8479
1 arquivos alterados com 1 adições e 1 exclusões
Baixar Arquivo de Patch Baixar Arquivo de Diff Expandir todos os arquivos Colapsar todos os arquivos
hphp/runtime/base/server/transport.cpp
+1 -1
Ver Arquivo
@@ -793,7 +793,7 @@ void Transport::redirect(const char *location, int code /* = 302 */,
const char *info) {
addHeaderImpl("Location", location);
setResponse(code, info);
sendStringLocked(location, code);
sendStringLocked("Moved", code);
}
void Transport::onFlushProgress(int writtenSize, int64_t delayUs) {