这是代码段:
public static string IntendedAction(UrlHelper url, string actionName, string controllerName, object routeValues = null) {
if (url.RequestContext.HttpContext.Request.Url == null) return null;
var scheme = url.RequestContext.HttpContext.Request.Url.Scheme;
return url.Action(actionName, controllerName, routeValues, scheme);
}
return url.Action(actionName, controllerName, routeValues, scheme);
哪里发生安全问题?