diff options
| author | rub <rub@piwigo.org> | 2006-10-21 12:28:07 +0000 |
|---|---|---|
| committer | rub <rub@piwigo.org> | 2006-10-21 12:28:07 +0000 |
| commit | 258fa3b40c0c60adad284ad3bc09ed33c5dc53a1 (patch) | |
| tree | 71616e49e713f5fb26038343c80a3c7b89b2fa06 /admin/comments.php | |
| parent | eaacbc7b2d224524eac6def04e9b721949afd4b8 (diff) | |
Resolved Issue ID 0000356:
o Increase security on adviser mode
First modifications of n modifications.
All the others modifications will be done on BSF branch.
Merge branch-1_6 1568:1570 into BSF
git-svn-id: http://piwigo.org/svn/trunk@1571 68402e56-0260-453c-a942-63ccdbb3a9ee
Diffstat (limited to 'admin/comments.php')
| -rw-r--r-- | admin/comments.php | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/admin/comments.php b/admin/comments.php index 3d6d83268..3debab9d0 100644 --- a/admin/comments.php +++ b/admin/comments.php @@ -46,7 +46,7 @@ if (isset($_POST)) $to_validate = array(); $to_reject = array(); - if (isset($_POST['submit'])) + if (isset($_POST['submit']) and !is_adviser()) { foreach (explode(',', $_POST['list']) as $comment_id) { @@ -68,11 +68,11 @@ if (isset($_POST)) } } } - else if (isset($_POST['validate-all']) and !empty($_POST['list'])) + else if (isset($_POST['validate-all']) and !empty($_POST['list']) and !is_adviser()) { $to_validate = explode(',', $_POST['list']); } - else if (isset($_POST['reject-all']) and !empty($_POST['list'])) + else if (isset($_POST['reject-all']) and !empty($_POST['list']) and !is_adviser()) { $to_reject = explode(',', $_POST['list']); } |