[Koha-bugs] [Bug 6628] [security] help system use insecure REFERRER for file inclusion
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Sat Nov 26 10:12:09 CET 2011
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=6628
--- Comment #3 from Frère Sébastien Marie <semarie-koha at latrappe.fr> 2011-11-26 09:12:09 UTC ---
The regexp isn't correct, as it disallow numbers in filename, like these:
acqui/z3950_search
admin/z3950servers
admin/koha2marclinks
So we should use:
s/[^a-zA-Z0-9_\-\/]//g
Else, works well.
Thanks.
--
Configure bugmail: http://bugs.koha-community.org/bugzilla3/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA Contact for the bug.
You are watching all bug changes.
More information about the Koha-bugs
mailing list