ruby.git - The Ruby Programming Language

diff options

author	Yusuke Endoh <mame@ruby-lang.org>	2022-11-22 10:49:27 +0900
committer	git <svn-admin@ruby-lang.org>	2022-11-22 02:00:11 +0000
commit	0e75b2f2e633ac9579e63e1d4b3bad02e915889c (patch)
tree	576e58cd001bd47738e6b53869737c8a5432d1ef /test/ruby/test_sprintf_comb.rb
parent	c05f85f373ed48594d9bf08e11ae0c84c06062f7 (diff)

[ruby/cgi] Prevent CRLF injection

Throw a RuntimeError if the HTTP response header contains CR or LF to prevent HTTP response splitting. https://hackerone.com/reports/1204695 https://github.com/ruby/cgi/commit/64c5045c0a

Diffstat (limited to 'test/ruby/test_sprintf_comb.rb')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: