WordPress.org
Get WordPress

Plugin Directory

Changeset 1506871


Ignore:
Timestamp:
10/02/2016 04:56:37 PM (10 years ago)
Author:
luke7263
Message:

updated connector.php: accepts only referer from current host and redirect to its home page if referer not ok

File:
1 edited

Legend:

Unmodified
Added
Removed

  • cysteme-finder/trunk/php/connector.php

    r1499441 r1506871  
    55$referer = $_SERVER['HTTP_REFERER'];
    66$servername = $_SERVER['SERVER_NAME'];
    7 if (strncmp ($referer, "http://$servername/", strlen($servername) + 8) && strncmp ($referer, "https://$servername/", strlen($servername) + 9))
     7if (empty($_SERVER['HTTPS']))
     8    $goodurl = "http://$servername";
     9else
     10    $goodurl = "https://$servername";
     11if (strncmp ($referer, $goodurl, strlen($goodurl)))
    812{
    9     echo "Cannot be launched that way.";
     13    header("Location: " . $goodurl);
    1014    exit;
    1115}
Note: See TracChangeset for help on using the changeset viewer.