[Phplib-users] Re: more auth->start woes
Brought to you by:
nhruby,
richardarcher
Menu
▾
▴
[Phplib-users] Re: more auth->start woes
|
From: Giancarlo P. <gia...@na...> - 2002-06-10 08:55:02
|
Giancarlo Pinerolo wrote: > > But the final drop was whBut the final drop was when realized that > $auth->auth[uid] could be passed from outside. If you clean all your > cookies an restart the browser (or disable cookies all the way), and > open > > showoff.php3?Example_Session=form > > your auth[uid] is now 'form'. No, I am deadly wrong! Excuse me. That had to be Example_Auth=form, which cannot be passed in the URL. Forget that message at all. Gian |
