mirror of
https://github.com/dreamhunter2333/cloudflare_temp_email.git
synced 2026-04-26 06:15:52 +03:00
[GH-ISSUE #431] [BUG]地址屏蔽词被绕过 #148
Labels
No milestone
No project
No assignees
1 participant
Notifications
Due date
No due date set.
Dependencies
No dependencies set.
Reference
starred/cloudflare_temp_email#148
Loading…
Add table
Add a link
Reference in a new issue
No description provided.
Delete branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Originally created by @Sun9220 on GitHub (Aug 22, 2024).
Original GitHub issue: https://github.com/dreamhunter2333/cloudflare_temp_email/issues/431
复现步骤
最新版:v0.7.4
在配置以下变量时 会将其他特殊符号给予屏蔽,例如 a-d-m-i-n会被替换成admin
address name 替换非法符号的正则表达式, 不在其中的符号将被替换,如果不设置,默认为 [^a-z0-9], 需谨慎使用, 有些符号可能导致无法收件
ADDRESS_REGEX = "[^a-z0-9]"
在Web上配置了
邮件地址屏蔽关键词(管理员可跳过检查):admin
经过实际测试,如果输入
a-d-m-i-n不会被block,而是会顺利的注册admin关键词的邮件地址
预期行为
希望作者看看怎么样修复一下这个bug,邮件地址屏蔽功能很需要
部署方式
浏览器环境
Chrome
@dreamhunter2333 commented on GitHub (Aug 23, 2024):
ok 我检查下代码,应该替换完在检查是否 block
@dreamhunter2333 commented on GitHub (Aug 24, 2024):
v0.7.4
https://github.com/dreamhunter2333/cloudflare_temp_email/releases/tag/v0.7.4
@Sun9220 commented on GitHub (Aug 24, 2024):
我更新到了最新版v0.7.4版本,更新了一下前端和后端。
通过 (https://github.com/dreamhunter2333/cloudflare_temp_email/releases/latest/download/worker.js) 更新的后端
通过 (https://temp-mail-docs.awsl.uk/zh/guide/ui/pages) 更新的前端
经过实际测试,屏蔽词被绕过的相关问题似乎还是存在 a-d_min 类似的形式还是会被注册成admin。麻烦再看看
@dreamhunter2333 commented on GitHub (Aug 25, 2024):
v0.7.5
name的校验检查