danwin1210/hosting
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Adding CSRF to file manager

Browse Source
This commit is contained in:
Noah van der Aa
2019-01-23 17:44:04 +01:00
committed by GitHub
parent e537e06118
commit bc4a8a4d7c
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
var/www/html/login.php
View File

@ -53,6 +53,7 @@ if($_SERVER['REQUEST_METHOD']==='POST'){
} }
if($ok){ if($ok){
$_SESSION['hosting_username']=$username; $_SESSION['hosting_username']=$username;
$_SESSION['csrf_token']=sha1(uniqid());
session_write_close(); session_write_close();
header('Location: home.php'); header('Location: home.php');
exit; exit;