greggy/landingpage-haus-schleusingen
1
0
Fork 0
Code Issues 2 Pull Requests Actions Packages Projects Releases Wiki Activity

Merge pull request 'Fix #43: Offene Redirects via REQUEST_URI fixen' (#51) from feature/issue-43-open-redirect-fix into main
Some checks failed
Lint / PHP Syntax Check (push) Successful in 33s
Details
Lint / HTML Lint (htmlhint) (push) Has been cancelled
Details
Lint / CSS Lint (stylelint) (push) Has been cancelled
Details

Browse Source 
Reviewed-on: #51
This commit is contained in:
greggy
2026-05-22 08:32:23 +02:00
parent 36b5639801 d44fb337e2
commit bd1407f8ab
1 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
app/controllers/HomeController.php
View File

@@ -51,7 +51,7 @@ class HomeController extends Controller
$honeypot = $normalizeContactValue((string) ($_POST['website'] ?? '')); $honeypot = $normalizeContactValue((string) ($_POST['website'] ?? ''));
if ($honeypot !== '') { if ($honeypot !== '') {
header('Location: ' . $_SERVER['REQUEST_URI'] . '#form-result'); header('Location: /#form-result');
$_SESSION['form_success'] = true; $_SESSION['form_success'] = true;
exit; exit;
} else { } else {
@@ -102,7 +102,7 @@ class HomeController extends Controller
if ($mailSent) { if ($mailSent) {
$_SESSION['last_contact_submit'] = time(); $_SESSION['last_contact_submit'] = time();
header('Location: ' . $_SERVER['REQUEST_URI'] . '#form-result'); header('Location: /#form-result');
$_SESSION['form_success'] = true; $_SESSION['form_success'] = true;
exit; exit;
} else { } else {
@@ -111,7 +111,7 @@ class HomeController extends Controller
} }
} }
if (!empty($formErrors)) { if (!empty($formErrors)) {
header('Location: ' . $_SERVER['REQUEST_URI'] . '#form-result'); header('Location: /#form-result');
$_SESSION['form_errors'] = $formErrors; $_SESSION['form_errors'] = $formErrors;
$_SESSION['form_data'] = $formData; $_SESSION['form_data'] = $formData;
exit; exit;