kotovalexarian-likes-gitlab/gitlab-org--gitlab-foss
1
0
Fork 0
Code Releases Activity
gitlab-org--gitlab-foss/changelogs/unreleased/54857-fix-templates-path-traversal.yml
Nick Thomas 69645389e9
Prevent a path traversal attack on global file templates 
The API permits path traversal characters like '../' to be passed down
to the template finder. Detect these requests and cause them to fail
with a 500 response code.
2018-12-05 14:12:35 +00:00

5 lines
106 B
YAML
Raw Blame History

---
title: Prevent a path traversal attack on global file templates
merge_request:
author:
type: security
View git blame Copy permalink