mirror of
https://github.com/Piwigo/Piwigo.git
synced 2026-07-13 13:21:43 +02:00
bug 2844: improve security on LocalFiles Editor, add pwg_token to avoid CSRF
git-svn-id: http://piwigo.org/svn/branches/2.4@20713 68402e56-0260-453c-a942-63ccdbb3a9ee
This commit is contained in:
@@ -27,6 +27,7 @@ if (document.getElementById("text") != null)
|
||||
</div>
|
||||
|
||||
<form method="post" class="properties" action="{$F_ACTION}" ENCTYPE="multipart/form-data" name="form">
|
||||
<input type="hidden" name="pwg_token" value="{$PWG_TOKEN}">
|
||||
|
||||
<div id="LocalFilesEditor">
|
||||
|
||||
|
||||
Reference in New Issue
Block a user