search

Saeven / zf3-circlical-user

Turnkey Authentication, Identity, and RBAC for Laminas and Zend Framework 3. Supports Doctrine and Middleware.
Mozilla Public License 2.0
36 stars 15 forks source link

Patches an in-the-wild attack vector that doesn't yield a vulnerabili… #107

Closed Saeven closed 1 year ago

Saeven commented 1 year ago

…ty, but throws an error.

"strpos() expects parameter 1 to be string, int given"

Somehow, it is possible for $_COOKIE to return an integer type as key.

sonarcloud[bot] commented 1 year ago

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
0.0% 0.0% Duplication