From e5b9aa6ef469adb5db2ff4b7575342bd79fd450a Mon Sep 17 00:00:00 2001
From: David Lawrence <dkl@mozilla.com>
Date: Tue, 1 Mar 2016 08:13:53 -0500
Subject: Bug 1252216 - Push extension configuration is vulnerable to CSRF and
 potentially code execution

---
 extensions/Push/template/en/default/pages/push_config.html.tmpl | 1 +
 1 file changed, 1 insertion(+)

(limited to 'extensions/Push/template/en')

diff --git a/extensions/Push/template/en/default/pages/push_config.html.tmpl b/extensions/Push/template/en/default/pages/push_config.html.tmpl
index 6e6507a39..3783ecad6 100644
--- a/extensions/Push/template/en/default/pages/push_config.html.tmpl
+++ b/extensions/Push/template/en/default/pages/push_config.html.tmpl
@@ -31,6 +31,7 @@ var push_defaults = new Array();
 <form method="POST" action="page.cgi">
 <input type="hidden" name="id" value="push_config.html">
 <input type="hidden" name="save" value="1">
+<input type="hidden" id="token" name="token" value="[% issue_hash_token(['push_config']) FILTER html %]">
 
 <table border="0" cellspacing="0" cellpadding="5" width="100%">
 
-- 
cgit v1.2.3-24-g4f1b