Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Open Redirect #8

Open
curea opened this issue Oct 25, 2016 · 1 comment
Open

Open Redirect #8

curea opened this issue Oct 25, 2016 · 1 comment
Assignees
@ejohn20
Labels
bug
Milestone
2.0

Comments

@curea
Copy link

curea commented Oct 25, 2016

Web Forms: Response.Redirect( )

MVC: Redirect
@ejohn20
Copy link
Member

ejohn20 commented Oct 25, 2016

Basic coverage added by @meadisu27 in v1.0.2. However, there are still false positives that need to be corrected when a static string is in front of a dynamic value. E.g.

Response.Redirect("path/file?id=" + Request["val"]) is currently flagged as an issue.

@ejohn20 ejohn20 added the bug label Jan 17, 2017
@ejohn20 ejohn20 self-assigned this Aug 11, 2017
@ejohn20 ejohn20 added this to the 2.0 milestone Jan 18, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@ejohn20 ejohn20

Labels
bug
Projects
None yet
Milestone
2.0
Development

No branches or pull requests
2 participants
@ejohn20 @curea