adam/Piwigo
1
0
Fork 0
mirror of https://github.com/Piwigo/Piwigo.git synced 2026-06-02 04:15:05 +02:00
Code Issues Packages Projects Releases Wiki Activity

fixes GHSA-hghg-37rg-7r42 increase security on secret_key

Browse Source
This commit is contained in:
plegall
2024-10-17 11:11:59 +02:00
parent 1d087ebefe
commit 552499e053
2 changed files with 21 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files
install.php
+1 -1
View File
@@ -351,7 +351,7 @@ define(\'DB_COLLATE\', \'\');
$query = '
INSERT INTO '.$prefixeTable.'config (param,value,comment)
VALUES (\'secret_key\',md5('.pwg_db_cast_to_text(DB_RANDOM_FUNCTION.'()').'),
VALUES (\'secret_key\',\''.sha1(random_bytes(1000)).'\'),
\'a secret key specific to the gallery for internal use\');';
pwg_query($query);