Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly
Appearance settings

Commit 78e9f2f

Browse filesBrowse files
lpincalpinca
committed
[security] Fix nits
1 parent e6fa434 commit 78e9f2f
Copy full SHA for 78e9f2f

File tree

Expand file treeCollapse file tree

1 file changed

+4
-2
lines changed
Open diff view settings
Filter options
Expand file treeCollapse file tree

1 file changed

+4
-2
lines changed
Open diff view settings
Collapse file

‎SECURITY.md‎

Copy file name to clipboardExpand all lines: SECURITY.md
+4-2Lines changed: 4 additions & 2 deletions
  • Display the source diff
  • Display the rich diff
Original file line numberDiff line numberDiff line change
@@ -41,14 +41,16 @@ acknowledge your responsible disclosure, if you wish.
4141
- Huntr report: https://www.huntr.dev/bounties/6d1bc51f-1876-4f5b-a2c2-734e09e8e05b/
4242
- Fixed in: 1.5.6
4343

44+
---
45+
4446
> url-parse mishandles certain uses of a single (back) slash such as https:\ &
4547
> https:/ and interprets the URI as a relative path. Browsers accept a single
4648
> backslash after the protocol, and treat it as a normal slash, while url-parse
4749
> sees it as a relative path.
4850
4951
- **Reporter credits**
50-
- Ready-Research
51-
- GitHub: [@Ready-Reserach](https://github.com/ready-research)
52+
- ready-research
53+
- GitHub: [@ready-research](https://github.com/ready-research)
5254
- Huntr report: https://www.huntr.dev/bounties/1625557993985-unshiftio/url-parse/
5355
- Fixed in: 1.5.2
5456

0 commit comments

Comments
0 (0)
Morty Proxy This is a proxified and sanitized view of the page, visit original site.