Skip to content
Browse files

Fix #50

  • Loading branch information...
1 parent b8f9a15 commit ca20d8445312e49e1e974c5ed8cf04400929e615 @narfbg narfbg committed Oct 27, 2012
Showing with 2 additions and 4 deletions.
  1. +1 −4 system/libraries/Session/drivers/Session_cookie.php
  2. +1 −0 user_guide_src/source/changelog.rst
View
5 system/libraries/Session/drivers/Session_cookie.php
@@ -223,9 +223,6 @@ protected function initialize()
show_error('In order to use the Cookie Session driver you are required to set an encryption key in your config file.');
}
- // Load the string helper so we can use the strip_slashes() function
- $this->CI->load->helper('string');
-
// Do we need encryption? If so, load the encryption class
if ($this->sess_encrypt_cookie === TRUE)
{
@@ -755,7 +752,7 @@ protected function _escape_slashes(&$val, $key)
*/
protected function _unserialize($data)
{
- $data = @unserialize(strip_slashes(trim($data)));
+ $data = @unserialize(trim($data));
if (is_array($data))
{
View
1 user_guide_src/source/changelog.rst
@@ -391,6 +391,7 @@ Bug fixes for 3.0
- Fixed a bug (#1624) - :doc:`Form Validation Library <libraries/form_validation>` rule **matches** didn't property handle array field names.
- Fixed a bug (#1630) - :doc:`Form Helper <helpers/form_helper>` function ``set_value()`` didn't escape HTML entities.
- Fixed a bug (#142) - :doc:`Form Helper <helpers/form_helper>` function ``form_dropdown()`` didn't escape HTML entities in option values.
+- Fixed a bug (#50) - :doc:`Session Library <libraries/sessions>` unnecessarily stripped slashed from serialized data, making it impossible to read objects in a namespace.
Version 2.1.3
=============

0 comments on commit ca20d84

Please sign in to comment.
Something went wrong with that request. Please try again.