[Koha-bugs] [Bug 3280] opac/opac-sendbasket.pl security leaky
bugzilla-daemon at liblime.com
bugzilla-daemon at liblime.com
Mon Jun 1 21:33:04 CEST 2009
http://bugs.koha.org/cgi-bin/bugzilla3/show_bug.cgi?id=3280
Chris Cormack <chris at bigballofwax.co.nz> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |chris at bigballofwax.co.nz
--- Comment #2 from Chris Cormack <chris at bigballofwax.co.nz> 2009-06-01 19:33:03 ---
Yeah, disallowing GET, would mean they would SPAM through POST instead.
Spammers are nothing if not persistent.
Checking for a non empty cart seems like a good way to go.
--
Configure bugmail: http://bugs.koha.org/cgi-bin/bugzilla3/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.
More information about the Koha-bugs
mailing list