You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Are cleansing functions taken into consideration by the analyzer? Not just for open redirect but also xss and other vulnerabilities that need sanitizing.
This still shows a warning:
//if (!string.IsNullOrEmpty(model.ReturnUrl))
if (Url.IsLocalUrl(model.ReturnUrl))
{
return Redirect(model.ReturnUrl);
}
The only way to get rid of the warning is to hard code the url string which isn't practical...
return Redirect("www.google.com");
The text was updated successfully, but these errors were encountered:
Are cleansing functions taken into consideration by the analyzer? Not just for open redirect but also xss and other vulnerabilities that need sanitizing.
This still shows a warning:
The only way to get rid of the warning is to hard code the url string which isn't practical...
return Redirect("www.google.com");
The text was updated successfully, but these errors were encountered: