| Summary | fails to view attachment due unset actionID |
| Queue | IMP |
| Queue Version | FRAMEWORK_3 |
| Type | Bug |
| State | Resolved |
| Priority | 3. High |
| Owners | jan (at) horde (dot) org |
| Requester | mi.braun (at) onlinehome (dot) de |
| Created | 09/23/2005 (7227 days ago) |
| Due | |
| Updated | 12/30/2009 (5668 days ago) |
| Assigned | 10/02/2005 (7218 days ago) |
| Resolved | 10/03/2005 (7217 days ago) |
| Github Issue Link | |
| Github Pull Request | |
| Milestone | |
| Patch | No |
Perfect for me
State ⇒ Resolved
cases with newer apps and older Horde versions. I guess I'm just not
sure if we want to break BC for what's essentially an enhancement vs.
for something that was definitively broken.
an anticipated security fix to me.
we use request variable *before* including core.php.
OTOH is a useful guard against security holes caused by slappy
programming from us.
with newer apps and older Horde versions. I guess I'm just not sure if
we want to break BC for what's essentially an enhancement vs. for
something that was definitively broken.
we use request variable *before* including core.php.
OTOH is a useful guard against security holes caused by slappy
programming from us.
This is obviously a BC break (my change, not this patch), but I
consider it worth it. What do others think?
problem throughout Horde, but the subtle breakages like this might be.
State ⇒ Feedback
This is obviously a BC break (my change, not this patch), but I
consider it worth it. What do others think?
State ⇒ Assigned
Priority ⇒ 3. High
Type ⇒ Bug
Summary ⇒ fails to view attachment due unset actionID
Queue ⇒ IMP
New Attachment: patch-imp-actionID.diff
State ⇒ Unconfirmed
i'm using current IMP with register_globals set.
It fails to display an part of the message or source of the message
par view.php due HORDE_BASE."/lib/core.php" does unset $actionID, if
register_globals is enabled.
Therefor actionID needs to be set after core.php is included.
A patch is attached.