[interchange-cvs] interchange - heins modified lib/Vend/Dispatch.pm

interchange-core@icdevgroup.org interchange-core@icdevgroup.org
Mon Apr 28 11:26:01 2003


User:      heins
Date:      2003-04-28 15:25:32 GMT
Modified:  lib/Vend Dispatch.pm
Log:
* Patch slight security hole where user password can be saved in session.

Revision  Changes    Path
1.16      +5 -2      interchange/lib/Vend/Dispatch.pm


rev 1.16, prev_rev 1.15
Index: Dispatch.pm
===================================================================
RCS file: /var/cvs/interchange/lib/Vend/Dispatch.pm,v
retrieving revision 1.15
retrieving revision 1.16
diff -u -r1.15 -r1.16
--- Dispatch.pm	27 Apr 2003 15:52:30 -0000	1.15
+++ Dispatch.pm	28 Apr 2003 15:25:32 -0000	1.16
@@ -1,6 +1,6 @@
 # Vend::Dispatch - Handle Interchange page requests
 #
-# $Id: Dispatch.pm,v 1.15 2003/04/27 15:52:30 mheins Exp $
+# $Id: Dispatch.pm,v 1.16 2003/04/28 15:25:32 mheins Exp $
 #
 # Copyright (C) 2002 ICDEVGROUP <interchange@icdevgroup.org>
 # Copyright (C) 2002 Mike Heins <mike@perusion.net>
@@ -26,7 +26,7 @@
 package Vend::Dispatch;
 
 use vars qw($VERSION);
-$VERSION = substr(q$Revision: 1.15 $, 10);
+$VERSION = substr(q$Revision: 1.16 $, 10);
 
 use POSIX qw(strftime);
 use Vend::Util;
@@ -164,6 +164,9 @@
 	mv_click  1
 	mv_nextpage  1
 	mv_failpage  1
+	mv_password  1
+	mv_verify  1
+	mv_password_old  1
 	mv_successpage  1
 	mv_more_ip  1
 	mv_credit_card_number  1