mirrors/django
1
0
Fork 0
mirror of https://github.com/django/django.git synced 2025-10-23 21:59:11 +00:00
Code Issues 32 Releases Wiki Activity

Fixed CVE-2018-14574 -- Fixed open redirect possibility in CommonMiddleware.

Browse Source
This commit is contained in:
Andreas Hug
2018-07-24 16:18:17 -04:00
committed by Tim Graham
parent 7dbe7aa0b6
commit a656a68127
8 changed files with 78 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
tests/middleware/urls.py
View File

@@ -6,4 +6,6 @@ urlpatterns = [
url(r'^noslash$', views.empty_view),
url(r'^slash/$', views.empty_view),
url(r'^needsquoting#/$', views.empty_view),
# Accepts paths with two leading slashes.
url(r'^(.+)/security/$', views.empty_view),
]