vcs.fsf.org Git - squirrelmail.git/commit

author	pdontthink <pdontthink@7612ce4b-ef26-0410-bec9-ea0150e637f0>
	Mon, 11 May 2009 21:49:23 +0000 (21:49 +0000)
committer	pdontthink <pdontthink@7612ce4b-ef26-0410-bec9-ea0150e637f0>
	Mon, 11 May 2009 21:49:23 +0000 (21:49 +0000)
commit	960b7ec2d43bd8d3b15be292b7558a18182056a7
tree	eb6ec9963af5221efd3457cd1987b6368d8354ef	tree \| snapshot (zip tar.gz)
parent	39352565ef2e2f1d438b23a5c291ec9e655ae8a0	commit \| diff

Fixed improper sanitizing of PHP_SELF and the lack of sanitizing of QUERY_STRING server environment variables. Thanks to Niels Teusink and Christian Balzer. (CVE-2009-1578)

git-svn-id: https://svn.code.sf.net/p/squirrelmail/code/trunk/squirrelmail@13669 7612ce4b-ef26-0410-bec9-ea0150e637f0

doc/ChangeLog		diff \| blob \| blame \| history
include/init.php		diff \| blob \| blame \| history

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom