Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How to sanitize url string in Python?

Tags:

python

url

sanitize

I have a python app that works with URL lists and produces bash script as an output.

How to sanitize URL so that a malicious user could not inject bash commands that will be executed on my infrastructure.

For instance:

http://www.circl.lu/a.php?rm -Rf /etc
like image 531
iceone213 Avatar asked Sep 09 '25 14:09

iceone213

1 Answers

I guess urllib is an option to parse the urls, in order to escape harmful characters. At least it looks like a good resource for your use case. See the docs of url-quoting.

from urllib.parse import quote

quote('touch foo', safe='/')
quote('rm -Rf /etc', safe='/')
quote('http://www.circl.lu/a.php?rm -Rf /etc', safe='/:?&')

#'touch%20foo'
#'rm%20-Rf%20/etc'
#'http://www.circl.lu/a.php?rm%20-Rf%20/etc'
like image 88
schilli Avatar answered Sep 12 '25 04:09

schilli

Sign in to Comment

Related questions

Configuration file with list of key-value pairs in python
Is the Python Module Counter() Using C?
How to create a user in the Moodle Rest WS using the Python Requests module?
How to split python list into chunks of equal size? [duplicate]
OSMNX Shortest Path - How to skip node if not reachable and take the next nearest
Python code for sending requests with certificate, private encrypted key and password
How to run django unit-tests on production database?
OneHotEncoding Protein Sequences
Elegantly convert a numpy array of int64 to a numpy array of datetime64

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!