|
| From: | Laurent Destailleur |
| Subject: | [Dolibarr-cvs] dolibarr/htdocs main.inc.php |
| Date: | Sat, 16 May 2009 06:31:59 +0000 |
CVSROOT: /cvsroot/dolibarr
Module name: dolibarr
Changes by: Laurent Destailleur <eldy> 09/05/16 06:31:59
Modified files:
htdocs : main.inc.php
Log message:
Sec: Make CSRF test at the beginning. No functionnal code must be done
if there is a security risk, so use just a return. Add test on a constant to
remove test for some pages because this break a lot of features.
CVSWeb URLs:
http://cvs.savannah.gnu.org/viewcvs/dolibarr/htdocs/main.inc.php?cvsroot=dolibarr&r1=1.430&r2=1.431
| [Prev in Thread] | Current Thread | [Next in Thread] |