routes: fix open redirect vulnerability #5364 (#5365)

2018-08-06 17:10:16 +08:00 · 2018-08-06 17:10:16 +08:00 · 1f247cf813
parent c9bb33afc3
commit 1f247cf813
1 changed files with 2 additions and 2 deletions
--- a/routes/user/auth.go
+++ b/routes/user/auth.go
@ -73,10 +73,10 @@ func AutoLogin(c *context.Context) (bool, error) {
 }

 // isValidRedirect returns false if the URL does not redirect to same site.
-// False: //url, http://url
+// False: //url, http://url, /\url
 // True: /url
 func isValidRedirect(url string) bool {
-	return len(url) >= 2 && url[0] == '/' && url[1] != '/'
+	return len(url) >= 2 && url[0] == '/' && url[1] != '/' && url[1] != '\\'
 }

 func Login(c *context.Context) {