Strip invalid characters from referer URLs
This commit is contained in:
parent
70cbe91776
commit
4011a113cc
|
@ -316,7 +316,7 @@ def get_referer(env, fallback = "/", unroll = true)
|
||||||
end
|
end
|
||||||
|
|
||||||
referer = referer.full_path
|
referer = referer.full_path
|
||||||
referer = "/" + referer.lstrip("/\\")
|
referer = "/" + referer.gsub(/[^\/?@&%=\-_.0-9a-zA-Z]/, "").lstrip("/\\")
|
||||||
|
|
||||||
if referer == env.request.path
|
if referer == env.request.path
|
||||||
referer = fallback
|
referer = fallback
|
||||||
|
|
Loading…
Reference in a new issue