Join GitHub today
GitHub is home to over 36 million developers working together to host and review code, manage projects, and build software together.Sign up
2017-08 Security Patch #4501
Secure two webapp vulnerabilities.
Firstly, improve sanitization of HTML content for job generated files.
This exploit was reported by Eric Rasche (@erasche).
Secondly, prevent URL redirection hijacking if certain query parameters happen to contain newlines or carriage returns.
This issue was reported by Manabu Ishii (@manabuishii).