stable

Clone or download

Read-only

Remove the cookies used by PHPWiki

They are not needed and the data they contains can be passed directly to unserialize() This contribution must not break anything in PHPWiki This contribution is part of request #10118: remote code execution through object unserialization of a user's recent elements Change-Id: I5e19431a7da2337da5f146580bae3aeba7a71506

Modified Files

Name
M src/common/wiki/phpwiki/lib/Request.php +1 −83 Go to diff View file
M src/common/wiki/phpwiki/lib/WikiUser.php +1 −6 Go to diff View file
M src/common/wiki/phpwiki/lib/WikiUserNew.php +0 −78 Go to diff View file
M src/common/wiki/phpwiki/lib/imagecache.php +2 −25 Go to diff View file
M src/common/wiki/phpwiki/lib/main.php +0 −2 Go to diff View file