diff options
author | mkanat%bugzilla.org <> | 2009-09-11 18:05:48 +0200 |
---|---|---|
committer | mkanat%bugzilla.org <> | 2009-09-11 18:05:48 +0200 |
commit | 7fda8c351dd6c9621d85c9b29c5c6baa2f1eaba3 (patch) | |
tree | b481c92d31115bb834b817672a3cb93cf2fbc264 | |
parent | cb23c7f7b623f500972ea3a227e0b278fe8695ac (diff) | |
download | bugzilla-7fda8c351dd6c9621d85c9b29c5c6baa2f1eaba3.tar.gz bugzilla-7fda8c351dd6c9621d85c9b29c5c6baa2f1eaba3.tar.xz |
Bug 508189: (CVE-2009-3166) [SECURITY] Logging in after changing your password would expose your new password in the URL
Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=mkanat
-rwxr-xr-x | token.cgi | 4 |
1 files changed, 4 insertions, 0 deletions
@@ -130,6 +130,8 @@ if ( $action eq 'chgpw' ) { || ThrowUserError("require_new_password"); validate_password($password, $cgi->param('matchpassword')); + # Make sure that these never show up in the UI under any circumstances. + $cgi->delete('password', 'matchpassword'); } ################################################################################ @@ -378,6 +380,8 @@ sub confirm_create_account { my $password = $cgi->param('passwd1') || ''; validate_password($password, $cgi->param('passwd2') || ''); + # Make sure that these never show up anywhere in the UI. + $cgi->delete('passwd1', 'passwd2'); my $otheruser = Bugzilla::User->create({ login_name => $login_name, |