ID: 22670
Updated by: [EMAIL PROTECTED]
Reported By: r_stretch at yahoo dot com
-Status: Open
+Status: Bogus
Bug Type: Session related
Operating System: Debian
PHP Version: 4.3.1
New Comment:
And again: This is not a bug. It's normal.
Previous Comments:
[2003-03-13 13:39:33] r_stretch at yahoo dot com
I am editting the code so you can actually see the example more
appropriately. Try this actual code an you will see the bug I am
speaking of.
< start >
INDEX.PHP
hover mouse - click to reload
http://path_to_URL/index.php";>hover mouse only
<- end ->
[2003-03-13 00:18:04] [EMAIL PROTECTED]
Yes, it's normal. (the cookie is not set at the first request)
[2003-03-12 23:03:05] r_stretch at yahoo dot com
Hi there,
It seems that if the index.php starts with session_start() any
hyperlinks that do not begin with "http://"; within the document will
have the PHPSESSID appended to the end of the hyperlink. Though once
you refresh the same page the PHPSESSID removes itself from the
hyperlink.
Example:
< start >
INDEX.PHP
reload this page
<- end ->
When you hover the cursor over the hyperlink you will see:
http://path_to_URL/index.php?PHPSESSID=hash_characters
Now click that same link and you will see (will refresh the page):
http://path_to_URL/index.php
I install only with MySQL, GD, CGI modules.
Is this a bug or is it working as expected?
--
Edit this bug report at http://bugs.php.net/?id=22670&edit=1