Browse Source

修复CSRF保护措施绕过漏洞

tags/6.0.0
tianya 3 years ago
parent
commit
de68bca7d1
1 changed files with 1 additions and 1 deletions
  1. +1
    -1
      src/dede/config.php

+ 1
- 1
src/dede/config.php View File

@@ -64,7 +64,7 @@ function csrf_check()
{
global $token;

if(!isset($token) || strcasecmp($token, $_SESSION['token']) != 0){
if(!isset($token) || strcasecmp($token, $_SESSION['token']) !== 0){
echo '<a href="http://bbs.dedecms.com/907721.html">DedeCMS:CSRF Token Check Failed!</a>';
exit;
}


Loading…
Cancel
Save