Skip to content

fix: encode or validate all user provided data passed to urls#739

Merged
onerandomusername merged 2 commits into
mainfrom
qt/fix-path-transversal-attacks
Nov 2, 2025
Merged

fix: encode or validate all user provided data passed to urls#739
onerandomusername merged 2 commits into
mainfrom
qt/fix-path-transversal-attacks

Conversation

@onerandomusername
Copy link
Copy Markdown
Owner

@onerandomusername onerandomusername commented Nov 2, 2025
edited
Loading

Fix a path traversal attack with request handling where untrusted values from users were passed directly into urls.

@onerandomusername onerandomusername changed the title fix: encode all user provided data passed to urls fix: encode or validate all user provided data passed to urls Nov 2, 2025
@onerandomusername onerandomusername merged commit 3aae687 into main Nov 2, 2025
8 checks passed
@onerandomusername onerandomusername deleted the qt/fix-path-transversal-attacks branch November 2, 2025 05:03
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@onerandomusername