[Weberp-svn] SF.net SVN: weberp:[9493] trunk/includes/session.inc
Brought to you by:
sotandeka,
tim_schofield
Menu
▾
▴
[Weberp-svn] SF.net SVN: weberp:[9493] trunk/includes/session.inc
|
From: <tim...@us...> - 2012-08-10 17:32:43
|
Revision: 9493
http://weberp.svn.sourceforge.net/weberp/?rev=9493&view=rev
Author: tim_schofield
Date: 2012-08-10 17:32:37 +0000 (Fri, 10 Aug 2012)
Log Message:
-----------
Fix security problem with session checking
Modified Paths:
--------------
trunk/includes/session.inc
Modified: trunk/includes/session.inc
===================================================================
--- trunk/includes/session.inc 2012-08-10 17:32:26 UTC (rev 9492)
+++ trunk/includes/session.inc 2012-08-10 17:32:37 UTC (rev 9493)
@@ -26,7 +26,9 @@
ini_set('max_execution_time',$MaximumExecutionTime);
session_write_close(); //in case a previous session is not closed
-session_start();
+if (session_id()==='') {
+ session_start();
+}
if (!isset($_SESSION['initiated'])) {
session_regenerate_id();
$_SESSION['initiated']=TRUE;
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
