#103 Bug in security check of importANN.php

closed-fixed
None
5
2004-11-12
2004-11-11
No

I observed this problem in the current CVS version of
the module.

The security check at the top of importANN.php looks
like this:

if(!$_SESSION['OBJ_user']->isDeity())
header('location:./../index.php');
exit();

The if statement has more than 2 line in its then
clause so brackets are required. Otherwise the script
just exits everytime.

Should be:

if(!$_SESSION['OBJ_user']->isDeity()) {
header('location:./../index.php');
exit();
}

Discussion

  • Eloi George

    Eloi George - 2004-11-12
    • assigned_to: nobody --> adarkling
    • status: open --> closed-fixed
     
  • Eloi George

    Eloi George - 2004-11-12

    Logged In: YES
    user_id=619893

    Thanks for catching that!

    Fixed in CVS and version 2.9

     

Log in to post a comment.

Get latest updates about Open Source Projects, Conferences and News.

Sign up for the SourceForge newsletter:





No, thanks