Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
fix(lib): fix
omz_urldecode
unsafe eval bug
The `omz_urldecode` function uses an eval to decode the input which can be exploited to inject commands. This is used only in the svn plugin and it requires a complex process to exploit, so it is highly unlikely to have been used by an attacker.
- Loading branch information