Sanitizing Usernames to Prevent URL Encoding Exploits #1
Merged
videotoaster
merged 3 commits from Danii/morsel:main
into main
2 months ago
Loading…
Reference in new issue
There is no content yet.
Delete Branch 'Danii/morsel:main'
Deleting a branch is permanent. It CANNOT be undone. Continue?
If a post by a user of the name "../logout" is seen, the user is immediately logged out. Accessing the user page of a user by the name of "%20" is impossible. lol. This PR disallows the creation of usernames containing some dangerous characters, among them the octets (%).
WIP: Sanitizing Usernames to Prevent URL Encoding Exploitsto Sanitizing Usernames to Prevent URL Encoding Exploits 3 months agoa58d9c5f06
into main 2 months agoa58d9c5f06
.