Changes between Initial Version and Version 1 of Ticket #12403, comment 2
- Timestamp:
- Mar 16, 2016, 4:14:08 AM (8 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
Ticket #12403, comment 2
initial v1 3 3 {{{#!diff 4 4 diff --git a/trac/web/api.py b/trac/web/api.py 5 index 0ea3e05af.. d004dbf111006445 index 0ea3e05af..b2599330c 100644 6 6 --- a/trac/web/api.py 7 7 +++ b/trac/web/api.py … … 10 10 for value in fs.list or (): 11 11 try: 12 - name = unicode(value.name, 'utf-8') 13 - if not value.filename: 14 - value = unicode(value.value, 'utf-8') 12 15 + name = value.name 13 16 + if '\x00' in name: 14 17 + raise HTTPBadRequest(_("Invalid request arguments.")) 15 name = unicode(value.name, 'utf-8') 16 - if not value.filename: 17 - value = unicode(value.value, 'utf-8') 18 + name = unicode(name, 'utf-8') 18 19 + if value.filename: 19 20 + if '\x00' in value.filename: