6.0.0-git
2019-03-19

[#4948] Back to browsing that bookmark's folder
Summary Back to browsing that bookmark's folder
Queue Trean
Type Bug
State Resolved
Priority 2. Medium
Owners jan (at) horde (dot) org
Requester pehrle (at) ac-reims (dot) fr
Created 2007-01-29 (4432 days ago)
Due 01/29/2007 (4432 days ago)
Updated 2007-01-30 (4431 days ago)
Assigned 2007-01-29 (4432 days ago)
Resolved 2007-01-30 (4431 days ago)
Milestone
Patch No

History
2007-01-30 10:48:18 Jan Schneider Comment #6
Assigned to Jan Schneider
Taken from Chuck Hagenbuch
State ⇒ Resolved
Reply to this comment
Makes sense, fixed in CVS.
2007-01-30 10:03:28 pehrle (at) ac-reims (dot) fr Comment #5 Reply to this comment
I did fix a bad variable name, but that wouldn't affect your case.
Hi Chuck,

At line 48

I need to force ",true" at the call of the function applicationUrl in 
the 1.2 Revision

header('Location: ' . Horde::applicationUrl('browse.php?f=' . 
$bookmark->folder,true));

My install is like

URL : https://servername/horde3

HORDE : cat /usr/share/horde3/lib/Horde.php

   ...

   function applicationUrl($uri, $full = false, $append_session = 0)

     {

         global $re

   ...
2007-01-29 17:07:45 Chuck Hagenbuch Comment #4 Reply to this comment
I did fix a bad variable name, but that wouldn't affect your case.
2007-01-29 17:02:17 Chuck Hagenbuch Deleted Original Message
 
2007-01-29 17:02:09 Chuck Hagenbuch Comment #3
Taken from ben
State ⇒ Feedback
Reply to this comment
I can't reproduce this, and I don't see where XSS can come in either.
2007-01-29 09:53:29 Jan Schneider Comment #2
Assigned to ben
Assigned to Chuck Hagenbuch
Reply to this comment
Beside that, this construct is vulnerable to XSS.
2007-01-29 09:15:19 pehrle (at) ac-reims (dot) fr Comment #1
Type ⇒ Bug
State ⇒ Unconfirmed
Priority ⇒ 2. Medium
Summary ⇒ Back to browsing that bookmark's folder
Due ⇒ 2007-01-29
Queue ⇒ Trean
New Attachment: bookmark.php.patch
Reply to this comment
Hi,

when i change the rating of a bookmark record, the code :



// Back to browsing that bookmark's folder, unless we were sent a

// next-URL (nu) parameter.

if (!is_null($url = Util::getFormData('nu'))) {

     header('Location: ' . $nu);

} else {

     header('Location: ' . Horde::applicationUrl('browse.php?f=' . 
$bookmark->folder));

}



put the rigtht frame to the horde login page !   (  header('Location: 
' . $nu);  condition is always matched)



I try to put the code

  header('Location: ' . Horde::applicationUrl($url, true));

from edit.php and it works fine.

Thanks,

Saved Queries