diff options
author | plegall <plg@piwigo.org> | 2012-04-07 21:02:24 +0000 |
---|---|---|
committer | plegall <plg@piwigo.org> | 2012-04-07 21:02:24 +0000 |
commit | 4a4fc8ccb7edd2caabf9fdba8d4f571e25b128a3 (patch) | |
tree | bbc7297946926bd7bc1a769ed1dd6f8c00a5140a /admin | |
parent | 7f893c7b874f1030342c88be17bb39c930eefdbd (diff) |
bug 2611 fixed: check $_GET['section'] input parameter
git-svn-id: http://piwigo.org/svn/branches/2.3@13957 68402e56-0260-453c-a942-63ccdbb3a9ee
Diffstat (limited to 'admin')
-rw-r--r-- | admin/configuration.php | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/admin/configuration.php b/admin/configuration.php index 8488aa489..8f051ba2c 100644 --- a/admin/configuration.php +++ b/admin/configuration.php @@ -35,6 +35,9 @@ include_once(PHPWG_ROOT_PATH.'admin/include/tabsheet.class.php'); check_status(ACCESS_ADMINISTRATOR); //-------------------------------------------------------- sections definitions + +check_input_parameter('section', $_GET, false, '/^[a-z]+$/i'); + if (!isset($_GET['section'])) { $page['section'] = 'main'; |