Skip to content

fix(security): prevent command injection via playlist parameter via /PUT method#2603

Open
bryanpd99 wants to merge 1 commit into
MiczFlor:developfrom
bryanpd99:patch-1
Open

fix(security): prevent command injection via playlist parameter via /PUT method#2603
bryanpd99 wants to merge 1 commit into
MiczFlor:developfrom
bryanpd99:patch-1

Conversation

@bryanpd99

Copy link
Copy Markdown

Refactor shuffle handling to validate request method and parameters, ensuring escape it's values and avoid CRE when input payload comes via HTTP. CVE publish with number CVE-2025-10327

Refactor shuffle handling to validate request method and parameters, ensuring proper error responses for invalid input.
@coveralls

Copy link
Copy Markdown

Pull Request Test Coverage Report for Build 21448766123

Details

  • 0 of 0 changed or added relevant lines in 0 files are covered.
  • No unchanged relevant lines lost coverage.
  • Overall coverage remained the same at 78.51%

Totals Coverage Status
Change from base Build 20814767722: 0.0%
Covered Lines: 453
Relevant Lines: 577

💛 - Coveralls

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants