kore

An easy to use, scalable and secure web application framework for writing web APIs in C.
Commits | Files | Refs | README | LICENSE | git clone https://git.kore.io/kore.git

commit 70e945afb7fa16c063917e37700653a7d796ccad
parent c2f66af937f84e24e0c482615eda03bc3d60f6f4
Author: Joris Vink <joris@coders.se>
Date:   Thu, 28 Jun 2018 15:27:55 +0200

limit http_argument_urldecode() to sane characters

Diffstat:
src/http.c | 2+-
1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/http.c b/src/http.c @@ -853,7 +853,7 @@ http_argument_urldecode(char *arg) h[3] = *(p + 2); h[4] = '\0'; - v = kore_strtonum(h, 16, 0, 255, &err); + v = kore_strtonum(h, 16, 0x20, 0x7e, &err); if (err != KORE_RESULT_OK) return (err);