作者:夏乐迎1 | 来源:互联网 | 2023-08-27 15:39
Is it just me or does it seem like storing the user name and
passwords in COOKIEs as clear text is a serious security hole.
Particularly since they're named so obviously as
'pma_COOKIE_password' and 'pma_COOKIE_username'???
Seems like a simple fix to store the COOKIE authentication as a
hash instead.
- Original URL: "https://sourceforge.net/p/phpmyadmin/bugs/839/":https://sourceforge.net/p/phpmyadmin/bugs/839/
- Original author: *anonymous
该提问来源于开源项目:phpmyadmin/phpmyadmin
- Status: closed-rejected --> invalid