Index: branches/2.8.x/CHANGELOG =================================================================== --- branches/2.8.x/CHANGELOG (revision 1311) +++ branches/2.8.x/CHANGELOG (revision 1312) @@ -11,7 +11,10 @@ ! = Update/Change ------------------------------------- 2.8.1 ------------------------------------- -01-Apr-2010 Dietmar Woellbrink (Luisehahne) +07-Apr-2010 Dietmar Woellbrink (Luisehahne) +# Ticket #971 Using $_POST in Admin - account - login.php (tks to Aldus) +! update class.wb.php added tokens function +07-Apr-2010 Dietmar Woellbrink (Luisehahne) # Ticket #967 Typo in the mysql-query results in "not" upgrading the modul info ( tks to Aldus) 01-Apr-2010 Dietmar Woellbrink (Luisehahne) # Ticket 963 Minor XSS issue in admin login Index: branches/2.8.x/wb/admin/interface/version.php =================================================================== --- branches/2.8.x/wb/admin/interface/version.php (revision 1311) +++ branches/2.8.x/wb/admin/interface/version.php (revision 1312) @@ -52,6 +52,6 @@ // check if defined to avoid errors during installation (redirect to admin panel fails if PHP error/warnings are enabled) if(!defined('VERSION')) define('VERSION', '2.8.x'); -if(!defined('REVISION')) define('REVISION', '1311'); +if(!defined('REVISION')) define('REVISION', '1312'); ?> \ No newline at end of file Index: branches/2.8.x/wb/account/login.php =================================================================== --- branches/2.8.x/wb/account/login.php (revision 1311) +++ branches/2.8.x/wb/account/login.php (revision 1312) @@ -46,7 +46,7 @@ require_once(WB_PATH.'/framework/class.login.php'); // Create new login app -$redirect = strip_tags((isset($_REQUEST['redirect'])) ? $_REQUEST['redirect'] : ''); +$redirect = strip_tags((isset($_POST['redirect'])) ? $_POST['redirect'] : ''); $thisApp = new Login( array( "MAX_ATTEMPS" => "3", Index: branches/2.8.x/wb/framework/class.wb.php =================================================================== --- branches/2.8.x/wb/framework/class.wb.php (revision 1311) +++ branches/2.8.x/wb/framework/class.wb.php (revision 1312) @@ -269,6 +269,66 @@ } } +/* + * creates Formular transactionnumbers for unique use + * @access public + * @param bool $asTAG: true returns a complete prepared, hidden HTML-Input-Tag (default) + * false returns an array including FTAN0 and FTAN1 + * @return mixed: array or string + * + * requirements: an active session must be available + */ + public function getFTAN( $asTAG = true) + { + if(function_exists('microtime')) + { + list($usec, $sec) = explode(" ", microtime()); + $time = ((float)$usec + (float)$sec); + }else{ + $time = time(); + } + $ftan = md5(((string)$time).$_SERVER['SERVER_ADDR']); + $_SESSION['FTAN'] = $ftan; + $ftan0 = 'a'.substr($ftan, -(10 + hexdec(substr($ftan, 1))), 10); + $ftan1 = 'a'.substr($ftan, hexdec(substr($ftan, -1)), 10); + if($asTAG == true) + { + return ''; + }else{ + return array('FTAN0' => $ftan0, 'FTAN1' => $ftan1); + } + } + +/* + * checks received form-transactionnumbers against session-stored one + * @access public + * @param string $mode: requestmethode POST(default) or GET + * @return bool: true if numbers matches against stored ones + * + * requirements: an active session must be available + * this check will prevent from multiple sending a form. history.back() also will never work + */ + public function checkFTAN( $mode = 'POST') + { + $retval = false; + if(isset($_SESSION['FTAN']) && strlen($_SESSION['FTAN']) == strlen(md5('dummy'))) + { + $ftan = $_SESSION['FTAN']; + $ftan0 = 'a'.substr($ftan, -(10 + hexdec(substr($ftan, 1))), 10); + $ftan1 = 'a'.substr($ftan, hexdec(substr($ftan, -1)), 10); + unset($_SESSION['FTAN']); + if(strtoupper($mode) == 'POST') + { + $retval = (isset($_POST[$ftan0]) && $_POST[$ftan0] == ($ftan1)); + $_POST[$ftan0] = ''; + }else{ + $retval = (isset($_GET[$ftan0]) && $_GET[$ftan0] == ($ftan1)); + $_GET[$ftan0] = ''; + } + } + return $retval; + } + // Print a success message which then automatically redirects the user to another page function print_success($message, $redirect = 'index.php') { global $TEXT, $database;