Project

General

Profile

« Previous | Next » 

Revision 1353

Added by FrankH almost 14 years ago

Security fixes

View differences:

save.php
22 22
$admin = new admin('Access', 'users_modify');
23 23

  
24 24
// Create new database object
25
$database = new database();
25
//$database = new database();
26
if( !$admin->checkFTAN() )
27
{
28
	$admin->print_error($MESSAGE['PAGES_NOT_SAVED'],'index.php');
29
	exit();
30
}
26 31

  
27 32
// Check if user id is a valid number and doesnt equal 1
28 33
if(!isset($_POST['user_id']) OR !is_numeric($_POST['user_id']) OR $_POST['user_id'] == 1) {

Also available in: Unified diff