Please sign in to comment.
Sanitize the URLs passed to redirect_to to prevent a potential respon…
…se splitting attack. CGI.rb and mongrel don't do any sanitization of the contents of HTTP headers, so care needs to be taken.
- Loading branch information...
Showing with 2 additions and 2 deletions.