Skip to content

redirect() doesn't filter "\r\n" leads to CRLF attack #913

Closed
@5alt

Description

@5alt

Hi,

redirect() doesn't filter "\r\n" which leads to CRLF attack.

For example, I use redirect("233\r\nSet-Cookie: name=salt") can set a new cookie in the client side.

:P

Metadata

Metadata

Assignees

No one assigned

    Labels

    ChangeNeigher a bug nor a freature, but something that needs to be addressed.

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions