[Wikidata-bugs] [Maniphest] [Commented On] T199652: Tool 'wp-world' gives 404s

Dvorapa Mon, 25 Feb 2019 02:12:45 -0800

Dvorapa added a comment.


  @Kolossos To the original tool: You should set 
`ini_set("session.cookie_httponly", 1);` and also wrap the `$page` into 
`htmlSpecialChars($page, ENT_QUOTES)` function to prevent any type of XSS I know

TASK DETAIL
  https://phabricator.wikimedia.org/T199652

EMAIL PREFERENCES
  https://phabricator.wikimedia.org/settings/panel/emailpreferences/

To: Dvorapa
Cc: Dvorapa, deryckchan, TheDJ, Kolossos, zhuyifei1999, 
Vincent_Mia_Edie_Verheyen, Nandana, AndyTan, Zylc, 1978Gage2001, Lahi, Gq86, 
GoranSMilovanovic, Jayprakash12345, Chicocvenancio, QZanden, Tbscho, 
LawExplorer, JJMC89, Poyekhali, _jensen, srodlund, Wong128hk, Wikidata-bugs, 
aude, El_Grafo, Dinoguy1000, Gryllida, scfc, Steinsplitter, Mbch331, Krenair, 
Keegan, chasemp

_______________________________________________
Wikidata-bugs mailing list
[email protected]
https://lists.wikimedia.org/mailman/listinfo/wikidata-bugs

[Wikidata-bugs] [Maniphest] [Commented On] T199652: Tool 'wp-world' gives 404s

Reply via email to