mirrors/raylib
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Merge pull request #687 from jubalh/openurlwarning

Browse Source 
Add warning to OpenURL()
This commit is contained in:
Ray 2018-11-12 14:41:36 +01:00 committed by GitHub
commit d2f4cc1142
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
src/core.c
View File

@ -1820,6 +1820,12 @@ int StorageLoadValue(int position)
} }
// Open URL with default system browser (if available) // Open URL with default system browser (if available)
// Note:
// This function is onlyl safe to use if you control the URL given.
// A user could craft a malicious string performing another action.
// Only call this function yourself not with user input or make sure to check the
// string yourself.
// See https://github.com/raysan5/raylib/issues/686
void OpenURL(const char *url) void OpenURL(const char *url)
{ {
char *cmd = calloc(strlen(url) + 10, sizeof(char)); char *cmd = calloc(strlen(url) + 10, sizeof(char));