Untriaged
[qwik-city] CSRF protection middleware does not work properly for content type header with parameters (eg. multipart/form-data)
Qwik is a performance focused javascript framework. Prior to version 1.12.0, a typo in the regular expression within isContentType causes incorrect parsing of certain Content-Type headers. This issue has been patched in version 1.12.0.
Affected products
qwik
- ==< 1.12.0
Matching in nixpkgs
pkgs.python312Packages.pyqwikswitch
QwikSwitch USB Modem API binding for Python
pkgs.python313Packages.pyqwikswitch
QwikSwitch USB Modem API binding for Python
pkgs.python314Packages.pyqwikswitch
QwikSwitch USB Modem API binding for Python
pkgs.home-assistant-component-tests.qwikswitch
Open source home automation that puts local control and privacy first
Package maintainers
-
@dotlambda Robert Schütz <rschuetz17@gmail.com>
-
@mweinelt Martin Weinelt <hexa@darmstadt.ccc.de>
-
@fabaff Fabian Affolter <mail@fabian-affolter.ch>