I am working with a URL which takes in the username for a GET call. Ex: https://example.com/details/< username >
However, if the username contains ".bat" or ".exe" (ex: mm.baty - https://example.com/details/mm.baty), there might be some security issues.
What are some suggestions for sending the username through the URL, without compromising the security issues.
Thank you for your help!