- no need to sanitize the session cookie, it is properly quoted when used

in the select statement
2024-10-05 07:32:13 +00:00 · 2011-11-29 07:16:04 +00:00 · 2011-11-29 07:16:04 +00:00 · f2e279f4c5
commit f2e279f4c5
parent 303e9ed124
1 changed files with 1 additions and 1 deletions
--- a/inc/inc.Authentication.php
+++ b/inc/inc.Authentication.php
@ -26,7 +26,7 @@ require_once("inc.ClassEmail.php");
 require_once("inc.ClassSession.php");

 /* Load session */
-$dms_session = sanitizeString($_COOKIE["mydms_session"]);
+$dms_session = $_COOKIE["mydms_session"];
 $session = new LetoDMS_Session($db);
 if(!$resArr = $session->load($dms_session)) {
 	setcookie("mydms_session", $dms_session, time()-3600, $settings->_httpRoot); //delete cookie