blob: 38182b0511b0dfe59486e137d052bccf796cbab9 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
|
diff -upr mantis-0.19.4/core/database_api.php mantis-0.19.4-fixed/core/database_api.php
--- mantis-0.19.4/core/database_api.php 2004-12-09 13:55:06.000000000 -0500
+++ mantis-0.19.4-fixed/core/database_api.php 2005-12-19 08:55:31.000000000 -0500
@@ -9,6 +9,10 @@
# $Id: 0.19.4-debian.patch,v 1.1 2005/12/19 14:06:44 rl03 Exp $
# --------------------------------------------------------
+ # Patch for #0005956: Database system scanner via variable poisoning
+ if (isset($_REQUEST["g_db_type"]))
+ die("");
+
### Database ###
# This is the general interface for all database calls.
|
GitWeb
