summaryrefslogtreecommitdiffstats
path: root/system/core/Controller.php
diff options
context:
space:
mode:
authorrajatsharma94 <rajat.shrma94@gmail.com>2015-07-20 19:19:56 +0200
committerrajatsharma94 <rajat.shrma94@gmail.com>2015-07-20 19:19:56 +0200
commit78e1b70e35b45455728e4126ed1b19d6332ad26b (patch)
tree082167986d5cfe0e42d13414c3db0ad603eb8495 /system/core/Controller.php
parent08b9f20df1c108be5c1ab8b32c0fcbed31a079b3 (diff)
Failed security check
The implemented security check to make sure the path is NOT a URL can easily be bypassed (gives false negative) for all subdomains. Eg "subdomain.domain.com" should ideally show an error but it does not. The new security check tries to make a fsockopen connection to validate whether the URL is external or not.
Diffstat (limited to 'system/core/Controller.php')
0 files changed, 0 insertions, 0 deletions