Skip to content

Commit e80d773

Browse files
DAQEMProspector
andauthored
fix: preserve allowed iframe query parameters (#5295)
Co-authored-by: Prospector <6166773+Prospector@users.noreply.github.com>
1 parent 0facf26 commit e80d773

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

packages/utils/parse.ts

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -53,7 +53,7 @@ export const configuredXss = new FilterXSS({
5353
continue
5454
}
5555

56-
const newSearchParams = new URLSearchParams()
56+
const newSearchParams = new URLSearchParams(url.searchParams)
5757
url.searchParams.forEach((value, key) => {
5858
if (!source.allowedParameters.some((param) => param.test(`${key}=${value}`))) {
5959
newSearchParams.delete(key)

0 commit comments

Comments
 (0)