Skip to content

Safe Redirects #139

Description

@acobster

Per lando sniff:

FILE: /app/lib/Conifer/Site.php
----------------------------------------------------------------------
FOUND 0 ERRORS AND 1 WARNING AFFECTING 1 LINE
----------------------------------------------------------------------
 737 | WARNING | wp_redirect() found. Using wp_safe_redirect(), along
     |         | with the allowed_redirect_hosts filter if needed,
     |         | can help avoid any chances of malicious redirects
     |         | within code. It is also important to remember to
     |         | call exit() after a redirect so that no other
     |         | unwanted code is executed.
     |         | (WordPress.Security.SafeRedirect.wp_redirect_wp_redirect)
----------------------------------------------------------------------

This is relatively low-risk because it would require us to be running malicious code on the server already that uses the admin_url to make a malicious redirect. No sites are currently affected.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type
    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions