diff options
| author | rub <rub@piwigo.org> | 2006-10-21 12:07:00 +0000 |
|---|---|---|
| committer | rub <rub@piwigo.org> | 2006-10-21 12:07:00 +0000 |
| commit | bc7b43345722917274a352dde49895e909fec6aa (patch) | |
| tree | b0f86667d1aa9f10b0d1e98103d51f9b6e58e1a0 /admin/comments.php | |
| parent | 60866f64c883091a7264299e3094c2ce733bfe91 (diff) | |
Resolved Issue ID 0000356:
o Increase security on adviser mode
First modifications of n modifications.
All the others modifications will be done on BSF branch.
Merge branch-1_6 1558:1559 into BSF
git-svn-id: http://piwigo.org/svn/branches/branch-1_6@1569 68402e56-0260-453c-a942-63ccdbb3a9ee
Diffstat (limited to 'admin/comments.php')
| -rw-r--r-- | admin/comments.php | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/admin/comments.php b/admin/comments.php index 3d6d83268..3debab9d0 100644 --- a/admin/comments.php +++ b/admin/comments.php @@ -46,7 +46,7 @@ if (isset($_POST)) $to_validate = array(); $to_reject = array(); - if (isset($_POST['submit'])) + if (isset($_POST['submit']) and !is_adviser()) { foreach (explode(',', $_POST['list']) as $comment_id) { @@ -68,11 +68,11 @@ if (isset($_POST)) } } } - else if (isset($_POST['validate-all']) and !empty($_POST['list'])) + else if (isset($_POST['validate-all']) and !empty($_POST['list']) and !is_adviser()) { $to_validate = explode(',', $_POST['list']); } - else if (isset($_POST['reject-all']) and !empty($_POST['list'])) + else if (isset($_POST['reject-all']) and !empty($_POST['list']) and !is_adviser()) { $to_reject = explode(',', $_POST['list']); } |