projects / mono.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a425ee9) | patch
Fix error handling for case of invalid host name
authorJan Thonemann <tm@protel.net>
Wed, 18 Jun 2014 15:15:45 +0000 (17:15 +0200)
committerIngo Krabbe <ingo.krabbe@protel.net>
Mon, 23 Nov 2015 12:01:57 +0000 (13:01 +0100)
commit49158fec2d65dc9797822ece55a564b310b1b03f
tree6295b39bf6e6f47e72f8dfc196fcba7655a2c398tree | snapshot
parenta425ee9491e69a658363b321ff5d32c720661c8ecommit | diff
Fix error handling for case of invalid host name

If a attacker injects invalid content into the "host" header field like
"><script>alert(123)</script>
this content is now html encoded.
This prevents XSS attacks.
mcs/class/System/System.Net/HttpListenerRequest.cs diff | blob | history
my mono mirror. check out Moved to http://github.com/mono/mono