https://sourceforge.net/p/php-csl/bugs/23/Recent changes to 23: Insecure SessionenThu, 19 Apr 2018 06:56:58 -0000https://sourceforge.net/p/php-csl/bugs/23/?limit=25#fe79<div class="markdown_content"><p>How would you correct this?<br/> &lt; $ur = "index.php?login=y&amp;q=".base64_encode(querystr());</p> <blockquote> <p>$ur = "index.php?login=y";</p> </blockquote></div>Johannes PahlThu, 19 Apr 2018 06:56:58 -0000https://sourceforge.net291ccc50c0ad68e8523a97406e03a6e4c2e45895https://sourceforge.net/p/php-csl/bugs/23/<div class="markdown_content"><p>Hello :D </p> <p>I'm L3b-r1'z Bug Researcher :)</p> <p>i found an bug in your last version of your project :D</p> <p>look to file named config</p> <p>if(!session_is_registered('phpcsl') &amp;&amp;<br /> !isset($_GET['login']) &amp;&amp; isset($_GET['act'])) {</p> <p>if(!$_GET['act'] == "session") {<br /> $ur = "index.php?login=y&amp;q=".base64_encode(querystr());<br /> header("Location: $ur");</p> <p>your session is danger here :D </p> <p>an attacker can add or edit or delete just to add in url </p> <p><a href="http://domain.tld/codesnippets/index.php?op=snips&amp;act=add" rel="nofollow">http://domain.tld/codesnippets/index.php?op=snips&amp;act=add</a><br /> add category</p> <p><a href="http://localhost/codesnippets/index.php?op=cats&amp;act=add" rel="nofollow">http://localhost/codesnippets/index.php?op=cats&amp;act=add</a></p> <p><a href="http://localhost/codesnippets/index.php?op=cats&amp;act=edit" rel="nofollow">http://localhost/codesnippets/index.php?op=cats&amp;act=edit</a> rename</p> <p>attacker can add every thing without logged in to your project :D</p> <p>Please Relase it before i share it :)</p> <p>Contact : L3br1z@Gmail.com</p> <p>Peace</p></div>L3b-r1'zSat, 30 Jun 2012 07:08:39 -0000https://sourceforge.net426f7fa570cc18b59cd40d359a1d06f1221f42cc