Skip to content
Permalink
Browse files Browse the repository at this point in the history
Mandril: check decoded URI (fix #92)
Signed-off-by: Eduardo Silva <eduardo@monkey.io>
  • Loading branch information
edsiper committed May 20, 2014
1 parent f929f3e commit 15f72c1
Showing 1 changed file with 2 additions and 1 deletion.
3 changes: 2 additions & 1 deletion plugins/mandril/mandril.c
Expand Up @@ -349,7 +349,8 @@ int _mkp_stage_30(struct plugin *p,
(void) cs;

PLUGIN_TRACE("[FD %i] Mandril validating URL", cs->socket);
if (mk_security_check_url(sr->uri) < 0) {

if (mk_security_check_url(sr->uri_processed) < 0) {
PLUGIN_TRACE("[FD %i] Close connection, blocked URL", cs->socket);
mk_api->header_set_http_status(sr, MK_CLIENT_FORBIDDEN);
return MK_PLUGIN_RET_CLOSE_CONX;
Expand Down

0 comments on commit 15f72c1

Please sign in to comment.