Validate redirect destination in Wikimania Scholarships application
Closed, ResolvedPublic
Actions

Assigned To

None

Authored By

	bd808
	Dec 11 2013, 3:24 AM

Description

Security review feedback:

Wikimania/Scholarship/Controllers/Login.php

handlePost - sanity check $next before you redirect

Version: wmf-deployment
Severity: normal

Status	Assigned	Task
Resolved	None	T59545 Review and deploy Wikimania Scholarship application
Resolved	bd808	T59870 Create puppet configuration for Wikimania Scholarships application
Resolved	• csteipp	T59546 Security review of Wikimania Scholarship
Resolved	None	T60305 Validate redirect destination in Wikimania Scholarships application

• bzimport raised the priority of this task from to Unbreak Now!.Nov 22 2014, 2:41 AM

• bzimport set Reference to bz58305.

• bzimport added a subscriber: Unknown Object (MLST).

Change 100750 had a related patch set uploaded by BryanDavis:
Validate redirect destination on login

Change 100750 merged by jenkins-bot:
Validate redirect destination on login