zulip/zerver/webhooks/dropbox/tests.py at 87f7874a79abe5be70a7a67258da957c4efe0bda

mirror of https://github.com/zulip/zulip.git synced 2025-11-12 18:06:44 +00:00

Files

Anders Kaseorg 87f7874a79 CVE-2020-12759: Fix reflected XSS vulnerability in Dropbox webhook.

Also check the challenge argument’s presence before using it.

Signed-off-by: Anders Kaseorg <anders@zulip.com>

2020-06-16 22:46:16 -07:00

View Raw