valvin
/
ttrss
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

use hash_equals() correctly

This commit is contained in:
Andrew Dolgov 2020-09-17 10:04:00 +03:00
parent e3adacc588
commit f72e6947d5
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
include/functions.php
View File

@ -679,7 +679,7 @@
}
function validate_csrf($csrf_token) {
return hash_equals($csrf_token, $_SESSION['csrf_token']);
return hash_equals($_SESSION['csrf_token'], $csrf_token);
}
function load_user_plugins($owner_uid, $pluginhost = false) {