adam/Piwigo
1
0
Fork 0
mirror of https://github.com/Piwigo/Piwigo.git synced 2026-06-02 04:15:05 +02:00
Code Issues Packages Projects Releases Wiki Activity

fixes #572, check $_GET['mode'] against hacking attempt

Browse Source 
git cherry-pick 9dd92959f6
This commit is contained in:
plegall
2017-01-01 19:03:20 +01:00
parent 54f3ba2a6b
commit ec4cbb0464
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
admin/batch_manager.php
+1
View File
@@ -566,6 +566,7 @@ $manager_link = get_root_url().'admin.php?page=batch_manager&mode=';
if (isset($_GET['mode']))
{
check_input_parameter('mode', $_GET, false, '/^(global|unit)$/');
$page['tab'] = $_GET['mode'];
}
else