[issue35748] urlparse library detecting wrong hostname leads to open redirect vulnerability
Neeraj Sonaniya
report at bugs.python.org
Wed Jan 16 05:04:35 EST 2019
Neeraj Sonaniya <nsonaniya2010 at gmail.com> added the comment:
Hi,
I know that \ (backslash) should be encoded to url encoding (%5c) but if the same url (without urlencoded form) typed into URL bar of browser we are getting hostname to 'https://www.google.com'
----------
_______________________________________
Python tracker <report at bugs.python.org>
<https://bugs.python.org/issue35748>
_______________________________________
More information about the Python-bugs-list
mailing list