]> gitweb.factorcode.org Git - factor.git/commit
projects / factor.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 41276b7) | patch
urls.encoding: only split query params on &.
authorJohn Benediktsson <mrjbq7@gmail.com>
Sun, 26 Dec 2021 18:09:38 +0000 (10:09 -0800)
committerJohn Benediktsson <mrjbq7@gmail.com>
Sun, 26 Dec 2021 18:11:30 +0000 (10:11 -0800)
commit9cda7ee9ce5c7c6432f5bd5a716dd56f781c71e4
tree054051e2bd737772a33e407341f819d7b16652actree | snapshot
parent41276b77f381a57a0b4110a92380e666769950f6commit | diff
urls.encoding: only split query params on &.

html5: recommends only &.
html4: for a little while suggested supporting both & and ;

splitting on both caused CVE-2021-23336 to be filed against cpython
basis/urls/encoding/encoding-tests.factor diff | blob | history
basis/urls/encoding/encoding.factor diff | blob | history
Factor programming language