[Found by ZeroPath and manually checked by me]
|
elseif (header in SENSITIVE_HEADERS && !isdomainorsubdomain(url.host, oldurl.host)) |
|
return false |
|
const SENSITIVE_HEADERS = Set([ |
|
"Authorization", |
|
"Www-Authenticate", |
|
"Cookie", |
|
"Cookie2" |
|
]) |
if there's a header like authorization, we would misjudge it as being not sensitive and forward it, which is a security flaw
[Found by ZeroPath and manually checked by me]
HTTP.jl/src/clientlayers/RedirectRequest.jl
Lines 44 to 45 in e7feb99
HTTP.jl/src/clientlayers/RedirectRequest.jl
Lines 69 to 74 in e7feb99
if there's a header like
authorization, we would misjudge it as being not sensitive and forward it, which is a security flaw