limit http_argument_urldecode() to sane characters - kore - Kore is a web application platform for writing scalable, concurrent web based processes in C or Python.

commit 70e945afb7fa16c063917e37700653a7d796ccad
parent c2f66af937f84e24e0c482615eda03bc3d60f6f4
Author: Joris Vink <joris@coders.se>
Date:   Thu, 28 Jun 2018 15:27:55 +0200

limit http_argument_urldecode() to sane characters

Diffstat:
src/http.c  | 2 +-

1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/src/http.c b/src/http.c
@@ -853,7 +853,7 @@ http_argument_urldecode(char *arg)
 		h[3] = *(p + 2);
 		h[4] = '\0';
 
-		v = kore_strtonum(h, 16, 0, 255, &err);
+		v = kore_strtonum(h, 16, 0x20, 0x7e, &err);
 		if (err != KORE_RESULT_OK)
 			return (err);

	kore Kore is a web application platform for writing scalable, concurrent web based processes in C or Python.
	Commits \| Files \| Refs \| README \| LICENSE \| git clone https://git.kore.io/kore.git