external
/
mailinabox
mirror of https://github.com/mail-in-a-box/mailinabox.git
1
0
Fork 0
Code Issues Releases Wiki Activity

vulnerability fix.

This commit is contained in:
bizonix 2016-08-19 18:58:30 +03:00 committed by GitHub
parent 86457e5bc4
commit 3ca9de2e00
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
management/daemon.py
View File

@ -562,7 +562,7 @@ def munin_cgi(filename):
if filename == "": if filename == "":
return ("a path must be specified", 404) return ("a path must be specified", 404)
query_str = request.query_string.decode("utf-8", 'ignore') query_str = request.query_string.decode("utf-8", 'ignore').replace('"', r'\"')
env = {'PATH_INFO': '/%s/' % filename, 'QUERY_STRING': query_str} env = {'PATH_INFO': '/%s/' % filename, 'QUERY_STRING': query_str}
cmd = COMMAND % query_str cmd = COMMAND % query_str