[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Noalyss-commit] [noalyss] 02/14: Reinforce and Protect ajax
From: |
Dany De Bontridder |
Subject: |
[Noalyss-commit] [noalyss] 02/14: Reinforce and Protect ajax |
Date: |
Wed, 28 Oct 2015 09:56:55 +0000 |
sparkyx pushed a commit to branch master
in repository noalyss.
commit f4ebb0664e1855b558e953eaee9c9e7da9568452
Author: Dany De Bontridder <address@hidden>
Date: Sun Oct 25 17:58:47 2015 +0100
Reinforce and Protect ajax
---
include/ajax/ajax_remove_submenu.php | 1 +
1 files changed, 1 insertions(+), 0 deletions(-)
diff --git a/include/ajax/ajax_remove_submenu.php
b/include/ajax/ajax_remove_submenu.php
index 913f997..9247301 100644
--- a/include/ajax/ajax_remove_submenu.php
+++ b/include/ajax/ajax_remove_submenu.php
@@ -26,5 +26,6 @@ if ( ! defined ('ALLOWED') ) die('Appel direct ne sont pas
permis');
if ($g_user->check_module('CFGPRO')==0)
die();
$p_profile_menu_id=HtmlInput::default_value_get('p_profile_menu_id', 0);
+if ( $p_profile_menu_id == 0 ||isNumber($p_profile_menu_id)==0) throw new
Exception(_('Donnée invalide'));
$cn->exec_sql('delete from profile_menu where pm_id = $1 or
pm_id_dep=$1',array($p_profile_menu_id))
?>
\ No newline at end of file
- [Noalyss-commit] [noalyss] branch master updated (08827e1 -> a3fd1a9), Dany De Bontridder, 2015/10/28
- [Noalyss-commit] [noalyss] 01/14: Protect $_POST variable, Dany De Bontridder, 2015/10/28
- [Noalyss-commit] [noalyss] 03/14: Fix issue when delete a menu with submenu , remove properly all direct and indirect children, Dany De Bontridder, 2015/10/28
- [Noalyss-commit] [noalyss] 07/14: Sort of the ledger in search, Dany De Bontridder, 2015/10/28
- [Noalyss-commit] [noalyss] 08/14: Bug : in follow-up , error in security can_add_action, Dany De Bontridder, 2015/10/28
- [Noalyss-commit] [noalyss] 02/14: Reinforce and Protect ajax,
Dany De Bontridder <=
- [Noalyss-commit] [noalyss] 05/14: Select has a new attribute : size, Dany De Bontridder, 2015/10/28
- [Noalyss-commit] [noalyss] 10/14: Bug : in follow-up , error in security can_add_action, Dany De Bontridder, 2015/10/28
- [Noalyss-commit] [noalyss] 11/14: Bug : in export card, the textarea was not exported in CSV properly, Dany De Bontridder, 2015/10/28
- [Noalyss-commit] [noalyss] 12/14: Bug : in export card, the textarea was not exported in CSV properly, Dany De Bontridder, 2015/10/28
- [Noalyss-commit] [noalyss] 06/14: Select has already undocumented rowsize attribute , changes reversed, Dany De Bontridder, 2015/10/28
- [Noalyss-commit] [noalyss] 09/14: Bug : in follow-up , error in security can_add_action, Dany De Bontridder, 2015/10/28
- [Noalyss-commit] [noalyss] 14/14: indent, Dany De Bontridder, 2015/10/28
- [Noalyss-commit] [noalyss] 13/14: #1188 : display side for detail operation, Dany De Bontridder, 2015/10/28
- [Noalyss-commit] [noalyss] 04/14: Translation and update comments, Dany De Bontridder, 2015/10/28