Revision 1388
Added by Dietmar over 13 years ago
| sections.php | ||
|---|---|---|
| 78 | 78 |
} elseif(isset($_POST['module']) && $_POST['module'] != '') |
| 79 | 79 |
{
|
| 80 | 80 |
// Get section info |
| 81 |
$module = $admin->add_slashes($_POST['module']);
|
|
| 81 |
$module = preg_replace("/\W/", "", $admin->add_slashes($_POST['module'])); // fix secunia 2010-91-4
|
|
| 82 | 82 |
// Include the ordering class |
| 83 | 83 |
require(WB_PATH.'/framework/class.order.php'); |
| 84 | 84 |
// Get new order |
Also available in: Unified diff
more Security fix for admin/pages