ID: 7253 Comment by: [EMAIL PROTECTED] Reported By: [EMAIL PROTECTED] Status: Closed Bug Type: *Session related Operating System: RH Linux 6.2 kernel 2.2.16 PHP Version: 4.0.3pl1 New Comment:
The bug exists also with hyperlinks tag For exemple : If I write : <script type="text/javascript"> <!-- pipo = '<a href=\"bla\">plop</a>'; --> </script> I obtain : <script type="text/javascript"> <!-- pipo = '<a href=\"bla\"?PHPSESSID=******>plop</a>'; --> Previous Comments: ------------------------------------------------------------------------ [2000-10-16 14:14:54] [EMAIL PROTECTED] The rewriter has been changed to not rewrite <img> tags by default. That is user configurable now. ------------------------------------------------------------------------ [2000-10-16 13:14:00] [EMAIL PROTECTED] The fact that the URL rewriter for transparent session ID propagation now apparently replaces single quotes with double quotes and appends the session ID to IMG tags is causing problems with JavaScript. For example, the line: var x = "<img src='test.jpg'>"; is re-written as: var x = "<img src="test.jpg?PHPSESSID=blah">"; and the browser's JavaScript interpreter thinks that the question mark indicates a conditional. If I try and use escaped doublequotes instead, i.e.: var x = "<img src=\"test.jpg\">"; it is re-written as: var x = "<img src="\?PHPSESSID=blah""test.jpg\">"; This happens with PHP 4.0.3 and 4.0.3pl2. I'm using apache 1.3.14 and mod_ssl 2.7.0 compiled against OpenSSL 0.9.6. I'm using the stock php.ini-optimized, the only things I've changed in it are the Register Globals option (turned it on), the include_path (set it to /usr/local/apache/htdocs/include), and session.use_trans_sid (turned it on). This bug creates JavaScript errors in both Netscape and IE. ------------------------------------------------------------------------ -- Edit this bug report at http://bugs.php.net/?id=7253&edit=1
