summaryrefslogtreecommitdiffstats
path: root/buglist.cgi
diff options
context:
space:
mode:
authorDavid Lawrence <dlawrence@mozilla.com>2011-01-07 05:02:28 +0100
committerDavid Lawrence <dlawrence@mozilla.com>2011-01-07 05:02:28 +0100
commitaa94254a92a7d1c4f09275b5937c3eae7300dad6 (patch)
tree64bbd301a0251b2f89d0d16ca80958f3357ba512 /buglist.cgi
parent8cea190794a75022d3d95932b5895a21afb0b298 (diff)
downloadbugzilla-aa94254a92a7d1c4f09275b5937c3eae7300dad6.tar.gz
bugzilla-aa94254a92a7d1c4f09275b5937c3eae7300dad6.tar.xz
Bug 621090 - [SECURITY] Adding saved searches lacks CSRF protection
r/a=mkanat
Diffstat (limited to 'buglist.cgi')
-rwxr-xr-xbuglist.cgi2
1 files changed, 2 insertions, 0 deletions
diff --git a/buglist.cgi b/buglist.cgi
index bd285ebc0..ebce66532 100755
--- a/buglist.cgi
+++ b/buglist.cgi
@@ -504,6 +504,8 @@ elsif (($cmdtype eq "doit") && defined $cgi->param('remtype')) {
my $query_name = $cgi->param('newqueryname');
my $new_query = $cgi->param('newquery');
my $query_type = QUERY_LIST;
+ my $token = $cgi->param('token');
+ check_hash_token($token, ['savedsearch']);
# If list_of_bugs is true, we are adding/removing individual bugs
# to a saved search. We get the existing list of bug IDs (if any)
# and add/remove the passed ones.