huahaofeng
/
aspnetcore
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
aspnetcore/src
History
Chris Ross (ASP.NET) b9c8f34919 Merged PR 1508: [2.2] HttpSys & IIS path normalization 
This takes PathNormalizer from Kestrel to normalize the request path and prevent traversals. (e.g. "/./" and "/../").

In 2.1 only HttpSys was affected (https://dev.azure.com/dnceng/internal/_git/aspnet-AspNetCore/pullrequest/1480). In 2.2 HttpSys and IIS-in-proc share this code (with additional tests). In 3.0 we'll refactor it to use more shared source across all three servers.
 		2019-06-08 06:37:36 +00:00
..
Antiforgery
Azure Add Site Extension to patch (#9336) 2019-04-15 22:21:27 -07:00
DataProtection
DefaultBuilder
Features/JsonPatch
Framework Merge branch 'release/2.1' into release/2.2 2019-04-15 16:42:07 -07:00
Hosting
Html/Abstractions
Http
Identity
Installers Remove dependency on jscript in IISExpress installers (#8707) 2019-04-11 21:25:54 -07:00
JavaScriptServices
Middleware
MusicStore
Mvc Skip model binding test due to environment changes (#10923) (#10931) 2019-06-05 20:35:29 -07:00
PackageArchive Prepare 2.2.6 2019-06-05 08:59:30 -07:00
Razor
Security
Servers Merged PR 1508: [2.2] HttpSys & IIS path normalization 2019-06-08 06:37:36 +00:00
Shared Merged PR 1508: [2.2] HttpSys & IIS path normalization 2019-06-08 06:37:36 +00:00
SignalR Merged PR 898: Update MessagePack dependency 2019-04-12 22:25:38 +00:00
SiteExtensions Add Site Extension to patch (#9336) 2019-04-15 22:21:27 -07:00
Templating Move updateMigrations.cmd back into its correct subfolder 2019-05-14 10:49:47 -07:00
Tools
submodules