rpg - Můj web o RP hrách

summary refs log tree commit diff

path: root/lib/scripts/fileuploader.js

diff options

author	Andreas Gohr <andi@splitbrain.org>	2014-09-23 20:17:49 +0200
committer	Andreas Gohr <andi@splitbrain.org>	2014-09-23 20:17:49 +0200
commit	395c2f0ff3e87977ea2573587a11f4ef294433f2 (patch)
tree	f01bb2b4abecc074eb250c53f3bc5e95ad2eba4f /lib/scripts/fileuploader.js
parent	1ee9b48eeac0acdc23d10bc12e2efa22a01f9989 (diff)
download	rpg-395c2f0ff3e87977ea2573587a11f4ef294433f2.tar.gz rpg-395c2f0ff3e87977ea2573587a11f4ef294433f2.tar.bz2

clean user credentials from control chars

This is to prevent zero byte attacks on external auth systems as described in http://www.freelists.org/post/dokuwiki/Fwd-Dokuwiki-maybe-security-issue-Null-byte-poisoning-in-LDAP-authentication

Diffstat (limited to 'lib/scripts/fileuploader.js')

0 files changed, 0 insertions, 0 deletions