Dotclear

Ticket #2032 (closed task: fixed)

Opened 11 years ago

Last modified 11 years ago

Usage de adminurl->redirect

Reported by: franck Owned by: franck
Priority: normal Milestone: 2.7.3
Component: module:core Version: 2.7.2
Severity: normal Keywords:
Cc:

Description (last modified by franck) (diff)

Il faut scanner les usages de adminurl->redirect (en retour des formulaires method="post") pour vérifier que les arguments auparavant passés via l'URL ($_GET) du formulaire et dorénavant passés via des champs masqués, soient bien récupérés via $_POST, voire $_REQUEST lorsque les deux usages sont possibles ($_GET ou $_POST).

J'en ai corrigé deux (voir rev [2884]), il en reste peut-être d'autres.

Change History

comment:1 Changed 11 years ago by franck

  • Description modified (diff)

comment:2 Changed 11 years ago by franck

  • Owner changed from team to Dsls

comment:3 Changed 11 years ago by franck

  • Owner changed from Dsls to franck

comment:4 Changed 11 years ago by franck <carnet.franck.paul@…>

  • Status changed from new to closed
  • Resolution set to fixed

(In [7ffa843d5cbc]) Get post_id from $_REQUEST instead of $_GET as some behaviour calls may redirect here via a post form using hidden fields, should fixed #2032

Note: See TracTickets for help on using tickets.

Sites map