mirror of
https://github.com/Piwigo/Piwigo.git
synced 2026-07-05 17:32:25 +02:00
Resolved Issue ID 0000356:
o Increase security on adviser mode First modifications of n modifications. All the others modifications will be done on BSF branch. Merge branch-1_6 1568:1570 into BSF git-svn-id: http://piwigo.org/svn/trunk@1571 68402e56-0260-453c-a942-63ccdbb3a9ee
This commit is contained in:
+3
-3
@@ -46,7 +46,7 @@ if (isset($_POST))
|
||||
$to_validate = array();
|
||||
$to_reject = array();
|
||||
|
||||
if (isset($_POST['submit']))
|
||||
if (isset($_POST['submit']) and !is_adviser())
|
||||
{
|
||||
foreach (explode(',', $_POST['list']) as $comment_id)
|
||||
{
|
||||
@@ -68,11 +68,11 @@ if (isset($_POST))
|
||||
}
|
||||
}
|
||||
}
|
||||
else if (isset($_POST['validate-all']) and !empty($_POST['list']))
|
||||
else if (isset($_POST['validate-all']) and !empty($_POST['list']) and !is_adviser())
|
||||
{
|
||||
$to_validate = explode(',', $_POST['list']);
|
||||
}
|
||||
else if (isset($_POST['reject-all']) and !empty($_POST['list']))
|
||||
else if (isset($_POST['reject-all']) and !empty($_POST['list']) and !is_adviser())
|
||||
{
|
||||
$to_reject = explode(',', $_POST['list']);
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user