aboutsummaryrefslogtreecommitdiffstats
path: root/phpBB/includes
diff options
context:
space:
mode:
Diffstat (limited to 'phpBB/includes')
-rw-r--r--phpBB/includes/session.php15
1 files changed, 8 insertions, 7 deletions
diff --git a/phpBB/includes/session.php b/phpBB/includes/session.php
index 585aa37d83..c0ed0cb350 100644
--- a/phpBB/includes/session.php
+++ b/phpBB/includes/session.php
@@ -52,14 +52,15 @@ class session
$this->page .= (isset($_POST['f'])) ? 'f=' . intval($_POST['f']) : '';
$this->cookie_data = array();
- if (isset($_COOKIE[$config['cookie_name'] . '_sid']) || isset($_COOKIE[$config['cookie_name'] . '_data']))
- {
- // Santise k? Is there a need? It's escaped for DB entry in relevant location
- // and isn't used directly anywhere else (nor should it!)
- $this->cookie_data['u'] = (!empty($_COOKIE[$config['cookie_name'] . '_u'])) ? (int) $_COOKIE[$config['cookie_name'] . '_u'] : 0;
- $this->cookie_data['k'] = (!empty($_COOKIE[$config['cookie_name'] . '_k'])) ? (string) $_COOKIE[$config['cookie_name'] . '_k'] : '';
+ if (isset($_COOKIE[$config['cookie_name'] . '_sid']) || isset($_COOKIE[$config['cookie_name'] . '_u']))
+ {
+ // Switch to request_var ... can this cause issues, can a _GET/_POST param
+ // be used to poison this? Not sure that it makes any difference in terms of
+ // the end result, be it a cookie or param.
+ $this->cookie_data['u'] = request_var($config['cookie_name'] . '_u', 0);
+ $this->cookie_data['k'] = request_var($config['cookie_name'] . '_k', '');
+ $this->session_id = request_var($config['cookie_name'] . '_sid', '');
- $this->session_id = request_var($config['cookie_name'] . '_sid', '');
$SID = (defined('NEED_SID')) ? '?sid=' . $this->session_id : '?sid=';
}
else
generated by cgit v1.2.1 (git 2.21.0) at 2025-08-20 07:24:22 +0000