Fixes U4-1485 Booting.aspx has potential Open Redirect flaw
This commit is contained in:
NielsHartvig@UMBRACORATI.localdomain
@@ -1,30 +1,31 @@
|
||||
using System;
|
||||
using System.Xml;
|
||||
using System.Text.RegularExpressions;
|
||||
using umbraco.IO;
|
||||
|
||||
namespace umbraco.cms.helpers
|
||||
{
|
||||
/// <summary>
|
||||
/// Summary description for url.
|
||||
/// </summary>
|
||||
public class url
|
||||
{
|
||||
public url()
|
||||
{
|
||||
//
|
||||
// TODO: Add constructor logic here
|
||||
//
|
||||
}
|
||||
/// <summary>
|
||||
/// Summary description for url.
|
||||
/// </summary>
|
||||
public class url
|
||||
{
|
||||
public url()
|
||||
{
|
||||
//
|
||||
// TODO: Add constructor logic here
|
||||
//
|
||||
}
|
||||
|
||||
public static string FormatUrl(string url)
|
||||
{
|
||||
string _newUrl = url;
|
||||
XmlNode replaceChars = UmbracoSettings.UrlReplaceCharacters;
|
||||
foreach (XmlNode n in replaceChars.SelectNodes("char"))
|
||||
{
|
||||
if (n.Attributes.GetNamedItem("org") != null && n.Attributes.GetNamedItem("org").Value != "")
|
||||
_newUrl = _newUrl.Replace(n.Attributes.GetNamedItem("org").Value,xmlHelper.GetNodeValue(n));
|
||||
}
|
||||
public static string FormatUrl(string url)
|
||||
{
|
||||
string _newUrl = url;
|
||||
XmlNode replaceChars = UmbracoSettings.UrlReplaceCharacters;
|
||||
foreach (XmlNode n in replaceChars.SelectNodes("char"))
|
||||
{
|
||||
if (n.Attributes.GetNamedItem("org") != null && n.Attributes.GetNamedItem("org").Value != "")
|
||||
_newUrl = _newUrl.Replace(n.Attributes.GetNamedItem("org").Value, xmlHelper.GetNodeValue(n));
|
||||
}
|
||||
|
||||
// check for double dashes
|
||||
if (UmbracoSettings.RemoveDoubleDashesFromUrlReplacing)
|
||||
@@ -32,8 +33,49 @@ namespace umbraco.cms.helpers
|
||||
_newUrl = Regex.Replace(_newUrl, @"[-]{2,}", "-");
|
||||
}
|
||||
|
||||
return _newUrl;
|
||||
}
|
||||
return _newUrl;
|
||||
}
|
||||
|
||||
}
|
||||
/// <summary>
|
||||
/// Utility method for checking for valid proxy urls or redirect urls to prevent Open Redirect security issues
|
||||
/// </summary>
|
||||
/// <param name="url">The url to validate</param>
|
||||
/// <param name="callerUrl">The url of the current local domain (to ensure we can validate if the requested url is local without dependency on the request)</param>
|
||||
/// <returns>True if it's an allowed url</returns>
|
||||
public static bool ValidateProxyUrl(string url, string callerUrl)
|
||||
{
|
||||
Uri requestUri;
|
||||
Uri localUri;
|
||||
if (Uri.TryCreate(url, UriKind.RelativeOrAbsolute, out requestUri))
|
||||
{
|
||||
if (!String.IsNullOrEmpty(callerUrl))
|
||||
{
|
||||
if (Uri.TryCreate(callerUrl, UriKind.RelativeOrAbsolute, out localUri))
|
||||
{
|
||||
// check for local urls
|
||||
if (!requestUri.IsAbsoluteUri || requestUri.Host == localUri.Host)
|
||||
{
|
||||
return true;
|
||||
}
|
||||
}
|
||||
else
|
||||
{
|
||||
throw new ArgumentException("CallerUrl is in a wrong format that couldn't be parsed as a valid URI. If you don't want to evaluate for local urls, but just proxy urls then leave callerUrl empty", "callerUrl");
|
||||
}
|
||||
}
|
||||
// check for valid proxy urls
|
||||
var feedProxyXml = xmlHelper.OpenAsXmlDocument(IOHelper.MapPath(SystemFiles.FeedProxyConfig));
|
||||
if (feedProxyXml != null &&
|
||||
feedProxyXml.SelectSingleNode(string.Concat("//allow[@host = '", requestUri.Host, "']")) != null)
|
||||
{
|
||||
return true;
|
||||
}
|
||||
} else
|
||||
{
|
||||
throw new ArgumentException("url is in a wrong format that couldn't be parsed as a valid URI", "url");
|
||||
|
||||
}
|
||||
return false;
|
||||
}
|
||||
}
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user