-
To prevent issues like https://github.com/piwik/plugin-CustomDimensions/issues/62
I would say the current way of sanitizing all input is rather an anti pattern and causes lots of bugs.
We need …
-
We're using v2.7.1 of the mail gem with ruby 2.4.4
Some of our users are typoing their names - not their email addresses - in ways that are causing syntax errors when we try and send the email.
…
-
We were notified that seyren was causing errors by posting JSON to an external API.
```
{"tags":["OK","seyren"],"content":" Production Application CPU Usage has entered its OK state - [summarize(grap…
-
We would like to ask the pentester which is the best way to implement validation to accept as images only gif/png/jpg/jpeg files.
That's because of #247 where we removed the libjpeg convertion that w…
-
In PHP 8.1 FILTER_SANITIZE_STRING seems to be deprecated.
They suggest swapping for htmlspecialchars but that doesn't seem to be an exact swap.
https://www.php.net/manual/en/filter.filters.sanitize.…
-
A vulnerability has been identified in Bootstrap that exposes users to Cross-Site Scripting (XSS) attacks.
To fix this vulnerability, please upgrade "bootstrap" in @valtimo/layout to the latest maj…
-
I noticed the application sanitizes quite a few common symbols like : and even question marks in titles/albums/artists, is it possible to make this string manipulation a toggle instead of the default …
-
I must be doing something wrong because I cannot get address sanitizer or memory sanitizer to work without randomly crashing on a minimal C program, even on a fresh install via Docker.
I can't imagin…
-
I'd like to be able to pass a configuration option into `rdmd.html(text,options)` that lets me turn off some of the sanitization. For example, I'd like to allow `iframe`s and `script` tags.
-
Shouldn't there be a chance to also use dynamic / placeholder values in the first field of the email copy that defines the recipient of the email? Now it gets sanitized as an email address. The affect…