harmacist/vichan
1
0
Fork 0
forked from GithubBackups/vichan
Code Pull Requests Activity

post.php: do not verify the poster IP if the captcha is dynamic

Browse Source
This commit is contained in:
Zankaria 2024-08-15 16:22:58 +02:00
parent cb5fb68c5e
commit f7073d5d7e
1 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
post.php
View File

@ -661,8 +661,13 @@ if (isset($_POST['delete'])) {
error($config['error']['bot']); error($config['error']['bot']);
} }
$response = $_POST[$field]; $response = $_POST[$field];
/*
* Do not query with the IP if the mode is dynamic. This config is meant for proxies and internal
* loopback addresses.
*/
$ip = $dynamic ? null : $_SERVER['REMOTE_ADDR'];
$success = $query->verify($response, $_SERVER['REMOTE_ADDR']); $success = $query->verify($response, $ip);
if (!$success) { if (!$success) {
error($config['error']['captcha']); error($config['error']['captcha']);
} }