hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-02-22 09:53:41 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
3e71d7f9bbeaf85d349dcbaa1e7d9c0950804029
codeql/python/ql/lib/semmle
History
Rasmus Wriedt Larsen 3e71d7f9bb Python: Add note about / for Django upload_to 
I did a test locally, something like

    import requests

    req = requests.Request(
        "POST",
        "http://127.0.0.1:8000/app/upload-test/",
        data={"name": "foo"},
        files={"upload" : ("wat/haha|!#$%^&", open("foo.txt", "rb"))},
    )

    # print(req.prepare().body.decode('ascii'))

    requests.session().send(req.prepare())

and the `wat/` part was stripped from the filename
2022-01-28 12:17:46 +01:00
..
crypto
Packaging: Rafactor Python core libraries
2021-08-24 13:23:45 -07:00
dataflow
Packaging: Rafactor Python core libraries
2021-08-24 13:23:45 -07:00
files
Packaging: Rafactor Python core libraries
2021-08-24 13:23:45 -07:00
python
Python: Add note about / for Django upload_to
2022-01-28 12:17:46 +01:00