diff options
author | Aaron Parecki <aaron@parecki.com> | 2017-02-12 20:18:34 -0800 |
---|---|---|
committer | Aaron Parecki <aaron@parecki.com> | 2017-02-12 20:18:34 -0800 |
commit | 43e8a1ef8d7586422b5d164204a57bdd5938a6d1 (patch) | |
tree | 2f832ca21f0a4cca330a763463db6c733246ae84 /views/partials | |
parent | 2c8387b1e08bff38895c2ce8a840a13a1fed1932 (diff) |
fix autosubmit vulnerability for "favorite" bookmarklet
closes #69
Diffstat (limited to 'views/partials')
-rw-r--r-- | views/partials/favorite-bookmarklet.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/views/partials/favorite-bookmarklet.php b/views/partials/favorite-bookmarklet.php index bdee851..df68802 100644 --- a/views/partials/favorite-bookmarklet.php +++ b/views/partials/favorite-bookmarklet.php @@ -1,3 +1,3 @@ (function(){ - window.open("<?= Config::$base_url ?>favorite?url="+encodeURIComponent(window.location.href)+"&autosubmit=true&token=<?= $this->token ?>"); + window.open("<?= Config::$base_url ?>favorite?url="+encodeURIComponent(window.location.href)+"&token=<?= $this->token ?>"); })(); |