diff options
author | lpsolit%gmail.com <> | 2009-02-02 18:33:29 +0000 |
---|---|---|
committer | lpsolit%gmail.com <> | 2009-02-02 18:33:29 +0000 |
commit | dc51769c9f7fb84ac2e43112f2d106a4770f5781 (patch) | |
tree | 2e33c5042d7608871c661a843c3c991da07693d7 /template/en/default/bug/edit.html.tmpl | |
parent | 8d70890dc0b7c24b25a344808ac4e63e6a5dd74e (diff) | |
download | bugs-dc51769c9f7fb84ac2e43112f2d106a4770f5781.tar bugs-dc51769c9f7fb84ac2e43112f2d106a4770f5781.tar.gz bugs-dc51769c9f7fb84ac2e43112f2d106a4770f5781.tar.bz2 bugs-dc51769c9f7fb84ac2e43112f2d106a4770f5781.tar.xz bugs-dc51769c9f7fb84ac2e43112f2d106a4770f5781.zip |
Bug 26257: [SECURITY] Bugzilla should prevent malicious webpages from making bugzilla users submit changes to bugs - Patch by Frédéric Buclin <LpSolit@gmail.com> r=mkanat a=LpSolit
Diffstat (limited to 'template/en/default/bug/edit.html.tmpl')
-rw-r--r-- | template/en/default/bug/edit.html.tmpl | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/template/en/default/bug/edit.html.tmpl b/template/en/default/bug/edit.html.tmpl index 97a2bd54f..80c5745fc 100644 --- a/template/en/default/bug/edit.html.tmpl +++ b/template/en/default/bug/edit.html.tmpl @@ -144,6 +144,7 @@ <input type="hidden" name="delta_ts" value="[% bug.delta_ts %]"> <input type="hidden" name="longdesclength" value="[% bug.longdescs.size %]"> <input type="hidden" name="id" value="[% bug.bug_id %]"> + <input type="hidden" name="token" value="[% issue_hash_token([bug.id, bug.delta_ts]) FILTER html %]"> [% PROCESS section_title %] <table> |