listen.php - FAILED SECURITY TEST!

[GoogleCodeExporter]

What steps will reproduce the problem?
1. A typical install
2.
3.

What is the expected output? What do you see instead?
I expected to hear the voicemail, no voicemail was played

What version of the product are you using? On what operating system?
.13 on centos5.3, apache 2.x

Please provide any additional information below.
when checking debug.txt i can see
2009-08-02 15:37:01 - listen.php - FAILED SECURITY TEST!

Original issue reported on code.google.com by kavadasd...@gmail.com on 4 Aug 2009 at 12:39

[GoogleCodeExporter]

edited listen.php

list($garbage2, $p_secret, $p_mailbox, $p_folder, $p_file) = split("/",
$_SERVER['QUERY_STRING']);

resolved the issue

Original comment by kavadasd...@gmail.com on 4 Aug 2009 at 7:45

[GoogleCodeExporter]

I agree, I found a very similar solution …

1. it is much better to use QUERY_STRING instead of REQUEST_URI, as the former 
does not assume a specific 
‘depth’ of URL.
2. using this solution means you no longer need the ‘/‘ at the beginning of 
the QUERY_STRING added to the 
template.

Original comment by jerm.qu...@gmail.com on 23 Oct 2009 at 9:22

[GoogleCodeExporter]

I had a different similar solution. I tried using QUERY_STRING, but it would not
work. What ended up working was to add $garbage3 to the list and use 
REQUEST_URI.
iPhone 3.1.2.

Original comment by silvergl...@gmail.com on 2 Dec 2009 at 9:52