gnh1201/seeddms-code
1
0
Fork 0
mirror of https://git.code.sf.net/p/seeddms/code synced 2025-05-14 13:42:04 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

- no need to sanitize the session cookie, it is properly quoted when used

Browse Source 
in the select statement
This commit is contained in:
steinm 2011-11-29 07:16:04 +00:00
parent 303e9ed124
commit f2e279f4c5
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
inc/inc.Authentication.php
View File

@ -26,7 +26,7 @@ require_once("inc.ClassEmail.php");
require_once("inc.ClassSession.php"); require_once("inc.ClassSession.php");
/* Load session */ /* Load session */
$dms_session = sanitizeString($_COOKIE["mydms_session"]); $dms_session = $_COOKIE["mydms_session"];
$session = new LetoDMS_Session($db); $session = new LetoDMS_Session($db);
if(!$resArr = $session->load($dms_session)) { if(!$resArr = $session->load($dms_session)) {
setcookie("mydms_session", $dms_session, time()-3600, $settings->_httpRoot); //delete cookie setcookie("mydms_session", $dms_session, time()-3600, $settings->_httpRoot); //delete cookie