aboutsummaryrefslogtreecommitdiffstats
path: root/phpBB/includes/sessions.php
diff options
context:
space:
mode:
Diffstat (limited to 'phpBB/includes/sessions.php')
-rw-r--r--phpBB/includes/sessions.php6
1 files changed, 3 insertions, 3 deletions
diff --git a/phpBB/includes/sessions.php b/phpBB/includes/sessions.php
index 92cc7459e1..ca7a97ba2b 100644
--- a/phpBB/includes/sessions.php
+++ b/phpBB/includes/sessions.php
@@ -34,7 +34,7 @@ function session_begin($user_id, $user_ip, $page_id, $session_length, $login = F
global $cookiename, $cookiedomain, $cookiepath, $cookiesecure, $cookielife;
global $HTTP_COOKIE_VARS;
- $cookiedata = unserialize($HTTP_COOKIE_VARS[$cookiename]);
+ $cookiedata = unserialize(stripslashes($HTTP_COOKIE_VARS[$cookiename]));
$current_time = time();
$expiry_time = $current_time - $session_length;
$int_ip = encode_ip($user_ip);
@@ -148,7 +148,7 @@ function session_pagestart($user_ip, $thispage_id, $session_length)
global $cookiename, $cookiedomain, $cookiepath, $cookiesecure, $cookielife;
global $HTTP_COOKIE_VARS;
- $cookiedata = unserialize($HTTP_COOKIE_VARS[$cookiename]);
+ $cookiedata = unserialize(stripslashes($HTTP_COOKIE_VARS[$cookiename]));
$current_time = time();
$int_ip = encode_ip($user_ip);
unset($userdata);
@@ -336,7 +336,7 @@ function session_end($session_id, $user_id)
global $cookiename, $cookiedomain, $cookiepath, $cookiesecure, $cookielife;
global $HTTP_COOKIE_VARS;
- $cookiedata = unserialize($HTTP_COOKIE_VARS[$cookiename]);
+ $cookiedata = unserialize(stripslashes($HTTP_COOKIE_VARS[$cookiename]));
$current_time = time();
$sql = "UPDATE ".SESSIONS_TABLE."
generated by cgit v1.2.1 (git 2.21.0) at 2025-03-26 11:05:19 +0000