archive/piwigo
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

bug 2613 fixed: on the theme configuration screen, make sure the

Browse source 
$_GET['theme'] is a theme id already installed.


git-svn-id: http://piwigo.org/svn/branches/2.3@13959 68402e56-0260-453c-a942-63ccdbb3a9ee
This commit is contained in:
plegall 2012-04-07 21:04:56 +00:00
parent 4a4fc8ccb7
commit e40bcacc3e
1 changed files with 7 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
admin/theme.php
View file

@ -34,6 +34,13 @@ if (empty($_GET['theme']))
die('Invalid theme URL');
}
include_once(PHPWG_ROOT_PATH.'admin/include/themes.class.php');
$themes = new themes();
if (!in_array($_GET['theme'], array_keys($themes->fs_themes)))
{
die('Invalid theme');
}
$filename = PHPWG_THEMES_PATH.$_GET['theme'].'/admin/admin.inc.php';
if (is_file($filename))
{