Skip to content

Security Issue - HTTP Response Splitting #114

Description

@cschofld

There is an HTTP response splitting vulnerability in the login redirection. When formatting the service parameter any control characters should be removed.

See https://www.owasp.org/index.php/HTTP_Response_Splitting

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions