options from Display Preferences there; also move some around within
Display Preferences.
- Security: Fix possible file/offsite inclusion in src/webmail.php.
- [CAN-2005-0075]
+ - Security: Fix possible XSS issues in src/webmail.php.
+ - Fix undefined variables in src/webmail.php.
Version 1.5.0
--------------------
sqgetGlobalVar('delimiter', $delimiter, SQ_SESSION);
sqgetGlobalVar('onetimepad', $onetimepad, SQ_SESSION);
+if (sqgetGlobalVar('sort', $sort)) {
+ $sort = (int) $sort;
+}
+
+if (sqgetGlobalVar('startMessage', $startMessage)) {
+ $startMessage = (int) $startMessage;
+}
+
+if (!sqgetGlobalVar('mailbox',$mailbox)) {
+ $mailbox = 'INBOX';
+}
+
sqgetGlobalVar('right_frame', $right_frame, SQ_GET);
if ( isset($_SESSION['session_expired_post']) ) {
if ($right_frame == 'right_main.php') {
$urlMailbox = urlencode($mailbox);
- $right_frame_url =
- "right_main.php?mailbox=$urlMailbox&sort=$sort&startMessage=$startMessage";
+ $right_frame_url = "right_main.php?mailbox=$urlMailbox"
+ . (!empty($sort)?"&sort=$sort":'')
+ . (!empty($startMessage)?"&startMessage=$startMessage":'');
} elseif ($right_frame == 'options.php') {
$right_frame_url = 'options.php';
} elseif ($right_frame == 'folders.php') {
} else if ($right_frame == '') {
$right_frame_url = 'right_main.php';
} else {
- $right_frame_url = $right_frame;
+ $right_frame_url = htmlspecialchars($right_frame);
}
$left_frame = '<frame src="left_main.php" name="left" frameborder="1" title="'.
projects / squirrelmail.git / commitdiff