Skip to content

Encode values #2

New issue
New issue
Open
Open
Encode values#2
Labels
enhancementhelp wanted
@CodesInChaos

Description

@CodesInChaos
CodesInChaos
opened on Jan 23, 2018

This doesn't handle values containing special characters correctly, because it doesn't escape them. This is particularly problematic for & and =, since these will now be interpreted as separate parameters. This could lead to security vulnerabilities, similar to SQL-Injection or XSS.

Metadata

Metadata

Assignees

No one assigned

    Labels

    enhancementhelp wanted

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions