php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login

go to bug id or search bugs for

Bug #22111 URL rewriter and Javascript
Submitted: 2003-02-07 13:00 UTC Modified: 2003-02-10 07:10 UTC
Votes:1
Avg. Score:3.0 ± 0.0
Reproduced:1 of 1 (100.0%)
Same Version:1 (100.0%)
Same OS:1 (100.0%)
From: xanthor at xanthor dot tk Assigned:
Status: Wont fix Package: Session related
PHP Version: 4.3.0 OS: All
Private report: No CVE-ID: None
View Developer Edit
Welcome back! If you're the original bug submitter, here's where you can edit the bug or add additional notes.
If you forgot your password, you can retrieve your password here.
Password:
Status:
Package:
Bug Type:
Summary:
From: xanthor at xanthor dot tk
New email:
PHP Version: OS:

 

 [2003-02-07 13:00 UTC] xanthor at xanthor dot tk 
The URL rewriter for transparent session ID propagation read also the javascripts and add PHPSESSID, sometimes with errors

For exemple :
If I write :

<script type="text/javascript">
<!--
pipo = '<a href=\"bla\">plop</a>';
-->
</script>

I obtain : 
<script type="text/javascript">
<!--
pipo = '<a href=\"bla\"?PHPSESSID=******>plop</a>';
-->
</script>

(Tested on servers with PHP4.3, runing with Apache 1.3.27 and Linux...)

Patches

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2003-02-07 23:13 UTC] sniper@php.net 
There's no need to quote "'s in your example.
Not bug.
 [2003-02-08 12:00 UTC] xanthor at xanthor dot tk 
The question is not about javascript but about PHP.
PHP shouldn't add PHPSESSID anywhere in javascript, especially if the script is writen between comment caracteres.

So yes, it is a bug.
 [2003-02-10 06:38 UTC] xanthor at xanthor dot tk 
So I reopen it...
 [2003-02-10 07:10 UTC] sniper@php.net 
In my opinion, there's no bug in this. In any case,
it will not be fixed..
 
PHP Copyright © 2001-2025 The PHP Group
All rights reserved. 		Last updated: Tue May 06 06:01:29 2025 UTC