Products.isurlinportal

Latest version: v3.0.0

Safety actively analyzes 701948 Python packages for vulnerabilities to keep your Python projects secure.

Page 2 of 2

1.2.0

------------------

New features:

- Treat urls like ``https:example.org`` without slashes as outside the portal.
Some browsers would redirect to example.org, some would redirect to a non-existing local page.
We never want this, because this is likely a hack attempt.
This vulnerability was discovered and reported by Yuji Tounai of Mitsui Bussan Secure Directions, Inc.
See `security advisory 1 <https://github.com/plone/Products.isurlinportal/security/advisories/GHSA-q3m9-9fj2-mfwr>`_.
[maurits] (1)

1.1.1

------------------

Bug fixes:

- Add testing for Python 3.6 + 3.8; add Python 3.8 trove classifier.
[tschorr] (3)

1.1.0

------------------

New features:

- Harden against tricky whitespace in urls.
[maurits] (1)

1.0.0

------------------

- Initial release.
Code is the same as current Plone 4.3.19, 5.1.6, 5.2.1, with the January 2020 hotfix applied, plus compatibility fixes.
[maurits]

Page 2 of 2

Releases

Has known vulnerabilities

Products.isurlinportal

Page 2 of 2

1.2.0

1.1.1

1.1.0

1.0.0

Page 2 of 2

Links

Releases