From 92cb17e05cecb4093ee9e189347ba66b8844528a Mon Sep 17 00:00:00 2001
From: Frédéric Buclin <LpSolit@gmail.com>
Date: Tue, 22 Nov 2011 22:03:28 +0100
Subject: Bug 703975: CSRF vulnerability in post_bug.cgi allows possible
 unauthorized bug creation r=mkanat a=LpSolit

---
 enter_bug.cgi | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'enter_bug.cgi')

diff --git a/enter_bug.cgi b/enter_bug.cgi
index 4ef886741..2337de120 100755
--- a/enter_bug.cgi
+++ b/enter_bug.cgi
@@ -207,7 +207,7 @@ $vars->{'qa_contact_disabled'}  = !$has_editbugs;
 
 $vars->{'cloned_bug_id'}         = $cloned_bug_id;
 
-$vars->{'token'}             = issue_session_token('createbug:');
+$vars->{'token'} = issue_session_token('create_bug');
 
 
 my @enter_bug_fields = grep { $_->enter_bug } Bugzilla->active_custom_fields;
-- 
cgit v1.2.3-24-g4f1b