PHP :: Bug #27471 :: variables in a function or script alter session variables

Bug #27471	variables in a function or script alter session variables
Submitted:	2004-03-02 20:23 UTC	Modified:	2004-03-04 03:22 UTC
From:	wxjasp02 at smumn dot edu	Assigned:
Status:	Closed	Package:	Session related
PHP Version:	Irrelevant	OS:	RedHat Linux 9.0
Private report:	No	CVE-ID:	None

View Add Comment Developer Edit

[2004-03-02 20:23 UTC] wxjasp02 at smumn dot edu

Description:
------------
Whenever i use a variable declared $group or $username in a function or part of a script, and $_SESSION['group'] or $_SESSION['username'] are in a valid session, the $group or $username variables ALTER the respective $_SESSION variable by the time the script ends.

This should NEVER occur.

Reproduce code:
---------------
http://www.mytoast.net/phpbug.html

Expected result:
----------------
It should complete all the if () statements safely, and execute them as if I were of the correct group type.

Actual result:
--------------
Basically, a $_SESSION['group'] is written to a session when a user logs in to my site. The form above, allows administrators of my site to alter user permissions and whatnot, but it seems if $group is a variable in the script, (and set), the $_SESSION['group'] gets altered to whatever that value is, and the real administrator loses all their admin privileges until they login again.

This is extremely annoying.
I found a workaround for the time being, but i don't like making more code than i have to...

Patches

Add a Patch

Pull Requests

Add a Pull Request

History

AllCommentsChangesGit/SVN commitsRelated reports

[2004-03-02 20:30 UTC] wxjasp02 at smumn dot edu

i altered the URL to my bug, as it was kinda hard to properly see the script as it is, the new one is:

http://www.mytoast.net/phpbug.txt

[2004-03-03 02:50 UTC] irchtml@php.net

What is register_globals set to?

[2004-03-03 04:44 UTC] derick@php.net

Thank you for this bug report. To properly diagnose the problem, we
need a short but complete example script to be able to reproduce
this bug ourselves. 

A proper reproducing script starts with <?php and ends with ?>,
is max. 10-20 lines long and does not require any external 
resources such as databases, etc.

If possible, make the script source available online and provide
an URL to it here. Try avoid embedding huge scripts into the report.

Also fill in your PHP version number, which IS relevant and add a link to your phpinfo(); output.

[2004-03-03 12:59 UTC] wxjasp02 at smumn dot edu

http://www.mytoast.net/phpinfo.php

register_globals is ON.

[2004-03-03 13:01 UTC] wxjasp02 at smumn dot edu

i will post some sample code by midnight CST

[2004-03-03 13:22 UTC] derick@php.net

Keeping the status at "feedback" until then then.

[2004-03-04 03:22 UTC] wxjasp02 at smumn dot edu

realized PHP forces $_ variables to GLOBAL scope if --register-globals is set to ON.

	php.net \| support \| documentation \| report a bug \| advanced search \| search howto \| statistics \| random bug \| login
go to bug id or search bugs for


Copyright © 2001-2024 The PHP Group All rights reserved.	Last updated: Thu Apr 18 02:02:52 2024 UTC