ZwiiCMS-Team/ZwiiCMS
ZwiiCMS-Team
/
ZwiiCMS
3
3
Fork 2
Code Releases 143 Activity

correctif faille CSRF

This commit is contained in:
fredtempez 2019-01-05 22:36:16 +01:00
parent 995278c753
commit b56696d651
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
core/module/page/page.php
View File

@ -95,7 +95,8 @@ class page extends common {
]); ]);
} }
// Jeton incorrect // Jeton incorrect
elseif($_GET['csrf'] !== $_SESSION['csrf']) { elseif(!isset ($_GET['csrf']) AND
$_GET['csrf'] !== $_SESSION['csrf']) {
// Valeurs en sortie // Valeurs en sortie
$this->addOutput([ $this->addOutput([
'redirect' => helper::baseUrl() . 'page/edit/' . $url[0], 'redirect' => helper::baseUrl() . 'page/edit/' . $url[0],