[Koha-bugs] [Bug 6629] [security] insecure use of Cookie for language selection
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Fri Nov 25 09:42:18 CET 2011
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=6629
--- Comment #15 from Chris Cormack <chris at bigballofwax.co.nz> 2011-11-25 08:42:18 UTC ---
It turns out, master is not vulnerable, nor is the 3.6.x branch, but the patch
should be applied anyway. Its a more elegant solution to checking the cookie.
But 3.2.x and 3.4.x are vulnerable
--
Configure bugmail: http://bugs.koha-community.org/bugzilla3/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA Contact for the bug.
You are watching all bug changes.
More information about the Koha-bugs
mailing list