php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login

go to bug id or search bugs for

Bug #49583 variable sesClientIP auto generated in $_SESSION
Submitted: 2009-09-18 03:54 UTC Modified: 2009-09-18 04:59 UTC
From: ssiangge at yahoo dot com dot sg Assigned:
Status: Not a bug Package: Session related
PHP Version: 5.3.0 OS: Ms WinXP Home Ed SP3
Private report: No CVE-ID: None
View Add Comment Developer Edit
Anyone can comment on a bug. Have a simpler test case? Does it work for you on a different platform? Let us know!
Just going to say 'Me too!'? Don't clutter the database with that please !
Your email address:
MUST BE VALID
Solve the problem:
33 - 14 = ?
Subscribe to this entry?

 
 [2009-09-18 03:54 UTC] ssiangge at yahoo dot com dot sg 
Description:
------------
Hi,
please refer the source code below...
I wonder why there is a variable 'sesClientIP' been auto generated.

To get the thing appear, follow the step:
1. go to the page that contain the source code below. 
   ** you will see the Expected result.
2. go to another web site e.g. google.com.
3. press 'back' button, and then press 'refresh' button if using Firefox.
   ** you will able to see there is a variable 'sesClientIP' in the $_SESSION.

I am expecting there will no any data in the $_SESSION.
Please correct me if I am wrong.
Note: there was no reference can be found from Yahoo or Google.

Reproduce code:
---------------
<?php
session_start();
echo "<pre>";
var_export($_SESSION);
echo "</pre>";
?>

Expected result:
----------------
array (
)


Actual result:
--------------
array (
  'sesClientIP' => '',
)

Patches

Add a Patch

Pull Requests

Add a Pull Request

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2009-09-18 04:59 UTC] ssiangge at yahoo dot com dot sg 
Hi,

I solved the problem already.

it was because i trying access to localhost/siteA/index.php (which is i reported as bug),
then i go to another page localhost/siteB/index.php.

Both site are using session, and the session domain is set to localhost (by Default), so the siteB has overwrite the Session data for siteA due to same Session ID.

sorry for the interrupt.

--------------------------
I always support PHP. Good job!
 
PHP Copyright © 2001-2024 The PHP Group
All rights reserved. 		Last updated: Sat May 18 02:01:33 2024 UTC