urllib not only opens http:// or https:// URLs, but also ftp:// and file://. With this it might be possible to open local files on the executing machine which might be a security risk if the URL to open can be manipulated by an external user. Correct way:
Occurrences
There are 2 occurrences of this issue in the repository.
Description
urllib
not only opens http:// or https:// URLs, but also ftp:// and file://. With this it might be possible to open local files on the executing machine which might be a security risk if the URL to open can be manipulated by an external user. Correct way:Occurrences
There are 2 occurrences of this issue in the repository.
See all occurrences on DeepSource → deepsource.io/gh/LonelyGuy12/some-random-shit/issue/BAN-B310/occurrences/