[Owncloud] Cross-site request forgery protection
Florian RĂ¼chel
florian.ruechel at googlemail.com
Tue Jun 12 19:03:13 UTC 2012
>
>
> It would be great if developers try the 2 functions and see if it works. Then we have to port all the important calls to it.
> We also have to backport it to the stable4 branch because this is a security issue.
Discovered a small issue: on line 412 it actually checks for <time not
<time()
Am I overseeing something or are the brackets missing.
Commit in my repository:
https://gitorious.org/~javex/owncloud/owncloud-javex/commit/240ac6f4106339ce36f7e3d119e67030e9a591be
(Dont worry the other thing, just fixed a damn apostrophe in my IDE)
Regards,
Florian
>
>
>
> Frank
>
>
>
> _______________________________________________
> Owncloud mailing list
> Owncloud at kde.org
> https://mail.kde.org/mailman/listinfo/owncloud
More information about the Owncloud
mailing list