diff options
author | David Lawrence <dlawrence@mozilla.com> | 2011-01-07 05:02:28 +0100 |
---|---|---|
committer | David Lawrence <dlawrence@mozilla.com> | 2011-01-07 05:02:28 +0100 |
commit | aa94254a92a7d1c4f09275b5937c3eae7300dad6 (patch) | |
tree | 64bbd301a0251b2f89d0d16ca80958f3357ba512 /buglist.cgi | |
parent | 8cea190794a75022d3d95932b5895a21afb0b298 (diff) | |
download | bugzilla-aa94254a92a7d1c4f09275b5937c3eae7300dad6.tar.gz bugzilla-aa94254a92a7d1c4f09275b5937c3eae7300dad6.tar.xz |
Bug 621090 - [SECURITY] Adding saved searches lacks CSRF protection
r/a=mkanat
Diffstat (limited to 'buglist.cgi')
-rwxr-xr-x | buglist.cgi | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/buglist.cgi b/buglist.cgi index bd285ebc0..ebce66532 100755 --- a/buglist.cgi +++ b/buglist.cgi @@ -504,6 +504,8 @@ elsif (($cmdtype eq "doit") && defined $cgi->param('remtype')) { my $query_name = $cgi->param('newqueryname'); my $new_query = $cgi->param('newquery'); my $query_type = QUERY_LIST; + my $token = $cgi->param('token'); + check_hash_token($token, ['savedsearch']); # If list_of_bugs is true, we are adding/removing individual bugs # to a saved search. We get the existing list of bug IDs (if any) # and add/remove the passed ones. |