FreeBSD Bugzilla – Attachment 170074 Details for
Bug 209349
www/roundcube: access to this resource is secured against CSRF
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Help
|
New Account
|
Log In
Remember
[x]
|
Forgot Password
Login:
[x]
[patch]
www/roundcube 1.1.4 patch for CSRF error on logout
rcube_utils.php.patch (text/plain), 472 bytes, created by
wxl
on 2016-05-06 23:36:52 UTC
(
hide
)
Description:
www/roundcube 1.1.4 patch for CSRF error on logout
Filename:
MIME Type:
Creator:
wxl
Created:
2016-05-06 23:36:52 UTC
Size:
472 bytes
patch
obsolete
>--- /usr/local/www/roundcube/program/lib/Roundcube/rcube_utils.php >+++ /usr/local/www/roundcube/program/lib/Roundcube/rcube_utils.php >@@ -1164,7 +1164,7 @@ > } > } > else { >- $alpha = 'ABCDEFGHIJKLMNOPQERSTUVXYZabcdefghijklmnopqrtsuvwxyz0123456789+*%&?!$-_='; >+ $alpha = 'ABCDEFGHIJKLMNOPQERSTUVXYZabcdefghijklmnopqrtsuvwxyz0123456789,*.:?!$-_='; > $random = ''; > > for ($i = 0; $i < $length; $i++) {
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=170074">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 209349
: 170074