关键信息 问题编号: XWIKI-20549 标题: Provide a new script service API to check trustfulness of an URI 状态: Closed 类型: Improvement 优先级: Major 影响的版本: 14.10.3 修复的版本: 14.10.4, 15.0 组件: Security, URLs 标签: None 难度: Unknown 文档: URL%20API#HScriptservice 发布说明: XWiki/15.0/Entry002/ 问题链接: - 阻塞: - XWIKI-20096: Open Redirect vulnerability discovered in the las... - XWIKI-20583: Provide a macro for sanitizing URLs in templates - 原因: - XWIKI-20615: $response.sendRedirect repair too much - 依赖: - XWIKI-20571: Livetable parameters cannot be recovered with... 描述 我们在XWIKI-10309中引入了检查URL是否属于可信域名的功能,但从未提供一个脚本服务来检查它。如果某些脚本需要确保能够正确访问指定的URL,这将非常有用。