Index: trunk/core/kernel/session/session.php
===================================================================
diff -u -r2681 -r2785
--- trunk/core/kernel/session/session.php	(.../session.php)	(revision 2681)
+++ trunk/core/kernel/session/session.php	(.../session.php)	(revision 2785)
@@ -257,7 +257,7 @@
 
 	function SetCookieDomain($domain)
 	{
-		$this->CookieDomain = $domain;
+		$this->CookieDomain = '.'.ltrim($domain, '.');
 	}
 
 	function SetGETName($get_name)
@@ -319,7 +319,7 @@
 	function CheckReferer()
 	{
 		$path = preg_replace("/admin$/", '', $this->CookiePath); // removing /admin for compatability with in-portal (in-link/admin/add_link.php)
-		$reg = '#^'.preg_quote(PROTOCOL.$this->CookieDomain.$path).'#';
+		$reg = '#^'.preg_quote(PROTOCOL.ltrim($this->CookieDomain, '.').$path).'#';
 		return preg_match($reg, $_SERVER['HTTP_REFERER']) || (defined('IS_POPUP') && IS_POPUP);
 	}