Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

Applied Security patch from Magento: PATCH_SUPEE-5344_CE #9

Merged
merged 1 commit into from
Feb 10, 2015
Merged

Applied Security patch from Magento: PATCH_SUPEE-5344_CE #9

merged 1 commit into from
Feb 10, 2015

Conversation

manish172
Copy link

No description provided.

LeeSaferite
LeeSaferite reviewed Feb 10, 2015
View reviewed changes
app/code/core/Mage/Admin/Model/Observer.php
@@ -69,13 +73,14 @@ public function actionPreDispatchAdmin($observer)
$session->login($username, $password, $request);
$request->setPost('login', null);
}
if (!$request->getParam('forwarded')) {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

For the record I'd like to point out that adding this getInternallyForwarded/setInternallyForwarded is silly as the request object supports parameters that are set via code only. When you call setParam you are seting 'userland' parameters. If you want to get a parameter and be sure it was set via code and not the inbound requests you use getUserParam and NOT getParam like the original code had.

LeeSaferite added a commit that referenced this pull request Feb 10, 2015
@LeeSaferite
Merge pull request #9 from manish172/magento-1.9
4e071c3 
Applied Security patch from Magento: PATCH_SUPEE-5344_CE
@LeeSaferite LeeSaferite merged commit 4e071c3 into OpenMage:magento-1.9 Feb 10, 2015
@tomekjordan tomekjordan mentioned this pull request Feb 1, 2017
Closed
@tomekjordan tomekjordan mentioned this pull request Feb 22, 2017
Closed
@urbancrew urbancrew mentioned this pull request Nov 22, 2017
Closed
@sreichel sreichel added the patch label Jan 11, 2018
@seansan seansan mentioned this pull request Apr 16, 2019
Closed
@digitalpianism digitalpianism mentioned this pull request Sep 7, 2020
Closed
@alexh-swdev alexh-swdev mentioned this pull request Sep 21, 2022
Closed
justinbeaty added a commit to justinbeaty/magento-lts that referenced this pull request Jan 18, 2023
@justinbeaty
Topic pr 2945 - backend validation (OpenMage#9)
d5dba71
@Jattura Jattura mentioned this pull request Mar 9, 2023
Closed
@matteotestoni matteotestoni mentioned this pull request Mar 16, 2023
Closed
@andyt andyt mentioned this pull request Apr 24, 2023
Closed
@alexh-swdev alexh-swdev mentioned this pull request Aug 9, 2023
Closed
@Tomasz-Silpion Tomasz-Silpion mentioned this pull request Jan 9, 2024
Closed
@r-martins r-martins mentioned this pull request Oct 15, 2024
Open
@LuizSantos22 LuizSantos22 mentioned this pull request Oct 16, 2024
Open
# for free to join this conversation on GitHub. Already have an account? # to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@manish172 @LeeSaferite @drobinson @sreichel