block people from using random python methods as HTTP methods
Bug #176415 reported by
Aaron Swartz
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
web.py |
Fix Released
|
High
|
Anand Chitipothu |
Bug Description
Maybe filter on ALL-CAPS methods?
Changed in webpy: | |
assignee: | nobody → anandology |
importance: | Undecided → High |
status: | New → Confirmed |
Changed in webpy: | |
milestone: | none → 0.23 |
status: | Confirmed → Fix Committed |
Changed in webpy: | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
On Dec 15, 2007 12:43 AM, Aaron Swartz <email address hidden> wrote:
> ** Changed in: webpy
> Importance: Undecided => High
> Assignee: (unassigned) => Anand Chitipothu (anandology)
> Status: New => Confirmed
>
> ** This bug has been flagged as a security issue
Shall we put 0.23 release with this?