[PATCH] Implements the $arg_encode_<name> variables for get url encode value of <name> argument from request string.

Igor Sysoev is at rambler-co.ru
Wed Mar 25 20:19:11 MSK 2009

On Wed, Mar 25, 2009 at 08:15:33PM +0300, Kirill A. Korinskiy wrote:

> Raw value of arguments from request string can help for XSS.

Probably, $encoded_arg_... will be better name ?

Igor Sysoev

More information about the nginx mailing list