Closed oligriffiths closed 6 years ago
Without this option set, this is a security vulnerability where the remote server can respond with a non-http protocol such as FTP for example, and curl will happily just follow the redirect. This needs applying to the V2 track also.
Thanks for merging this. Can we get a new tag for this? Thanks
Without this option set, this is a security vulnerability where the remote server can respond with a non-http protocol such as FTP for example, and curl will happily just follow the redirect. This needs applying to the V2 track also.