php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login

go to bug id or search bugs for

Bug #22111 URL rewriter and Javascript
Submitted: 2003-02-07 13:00 UTC Modified: 2003-02-10 07:10 UTC
Votes:1
Avg. Score:3.0 ± 0.0
Reproduced:1 of 1 (100.0%)
Same Version:1 (100.0%)
Same OS:1 (100.0%)
From: xanthor at xanthor dot tk Assigned:
Status: Wont fix Package: Session related
PHP Version: 4.3.0 OS: All
Private report: No CVE-ID: None
View Add Comment Developer Edit
Anyone can comment on a bug. Have a simpler test case? Does it work for you on a different platform? Let us know!
Just going to say 'Me too!'? Don't clutter the database with that please — but make sure to vote on the bug!
Your email address:
MUST BE VALID
Solve the problem:
26 + 38 = ?
Subscribe to this entry?

 
 [2003-02-07 13:00 UTC] xanthor at xanthor dot tk 
The URL rewriter for transparent session ID propagation read also the javascripts and add PHPSESSID, sometimes with errors

For exemple :
If I write :

<script type="text/javascript">
<!--
pipo = '<a href=\"bla\">plop</a>';
-->
</script>

I obtain : 
<script type="text/javascript">
<!--
pipo = '<a href=\"bla\"?PHPSESSID=******>plop</a>';
-->
</script>

(Tested on servers with PHP4.3, runing with Apache 1.3.27 and Linux...)

Patches

Add a Patch

Pull Requests

Add a Pull Request

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2003-02-07 23:13 UTC] sniper@php.net 
There's no need to quote "'s in your example.
Not bug.
 [2003-02-08 12:00 UTC] xanthor at xanthor dot tk 
The question is not about javascript but about PHP.
PHP shouldn't add PHPSESSID anywhere in javascript, especially if the script is writen between comment caracteres.

So yes, it is a bug.
 [2003-02-10 06:38 UTC] xanthor at xanthor dot tk 
So I reopen it...
 [2003-02-10 07:10 UTC] sniper@php.net 
In my opinion, there's no bug in this. In any case,
it will not be fixed..
 
PHP Copyright © 2001-2024 The PHP Group
All rights reserved. 		Last updated: Mon May 06 08:01:33 2024 UTC