Sanitizing Usernames to Prevent URL Encoding Exploits
Mergedvideotoaster merged 3 commits from
main2 months ago
Reference in new issue
There is no content yet.
Delete Branch 'Danii/morsel:main'
Deleting a branch is permanent. It CANNOT be undone. Continue?
If a post by a user of the name "../logout" is seen, the user is immediately logged out. Accessing the user page of a user by the name of "%20" is impossible. lol. This PR disallows the creation of usernames containing some dangerous characters, among them the octets (%).
WIP: Sanitizing Usernames to Prevent URL Encoding Exploitsto Sanitizing Usernames to Prevent URL Encoding Exploits 3 months ago
a58d9c5f06into main 2 months ago