Henryk Plötz
Results
12
issues of
Henryk Plötz
Currently no escaping is done when outputting (the only) user-supplied data, leading to a trivial XSS vulnerability (albeit with limited impact). To test, try entering something like ``` http://foo'>Foo ```...
New optional parameter for `Tailscale()`: `api_url`, same as `--login-server` for the `tailscale` CLI client. # Proposed Changes This change will allow setting a custom API URL for the tailscale control...