Uploaded image for project: 'phpBB3'
  1. phpBB3
  2. PHPBB3-9126

Invalid redirection after login to forum not in web root

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 3.0.7-PL1
    • Fix Version/s: 3.0.8-RC1
    • Component/s: Login
    • Labels:
      None
    • Environment:
      PHP Environment: 5.2.12
      Database: 5.1.40

      Description

      This issue affects any forum (i.e. https://myforum/phpBB3/) where:

      If these conditions are met, after successful login the user is redirected to an invalid URI (i.e., https://myforum/phpBB3/phpBB3?sid=).

      To fix this behavior, extract_current_page() in includes/session.php needs to handle the case correctly where the URI of the current page ends in a slash and is not the web root.

        Attachments

          Activity

            People

            • Assignee:
              naderman Nils Adermann
              Reporter:
              dpward dpward
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: