[PATCH] Implements the $arg_encode_<name> variables for get url encode value of <name> argument from request string.

Igor Sysoev is at rambler-co.ru
Wed Mar 25 20:19:11 MSK 2009

Previous message: [PATCH] Implements the $arg_encode_<name> variables for get url encode value of <name> argument from request string.
Next message: [PATCH] Implements the $arg_encode_<name> variables for get url encode value of <name> argument from request string.
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Mar 25, 2009 at 08:15:33PM +0300, Kirill A. Korinskiy wrote:

> Raw value of arguments from request string can help for XSS.

Probably, $encoded_arg_... will be better name ?


-- 
Igor Sysoev
http://sysoev.ru/en/

Previous message: [PATCH] Implements the $arg_encode_<name> variables for get url encode value of <name> argument from request string.
Next message: [PATCH] Implements the $arg_encode_<name> variables for get url encode value of <name> argument from request string.
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the nginx mailing list