fix DOM XSS via unvalidated form redirects (#120)

* implement safe url validation for redirects added validation for safe redirect urls to prevent xss attacks * add changeset: fix dom xss in form redirects (marked as patch version bump for @emdash-cms/plugin-forms) --------- Co-authored-by: Matt Kane <mkane@cloudflare.com>
2026-04-04 16:51:36 +02:00
parent 9ebc8b1f3f
commit 66beb4da1f
2 changed files with 22 additions and 1 deletions
--- a/.changeset/bright-facts-taste.md
+++ b/.changeset/bright-facts-taste.md
@@ -0,0 +1,5 @@
+---
+"@emdash-cms/plugin-forms": patch
+---
+
+Fix DOM XSS in form redirects