Revision 1395
Added by FrankH almost 14 years ago
- Security fix in admin/addons
| reload.php | ||
|---|---|---|
| 36 | 36 |
$admin = new admin('Admintools', 'admintools', false, false);
|
| 37 | 37 |
if ($admin->get_permission('admintools') == false) die(header('Location: ../../index.php'));
|
| 38 | 38 |
|
| 39 |
if (!$admin->checkFTAN()) |
|
| 40 |
{
|
|
| 41 |
$admin->print_error($MESSAGE['GENERIC_SECURITY_ACCESS'], ADMIN_URL); |
|
| 42 |
exit(); |
|
| 43 |
} |
|
| 44 |
|
|
| 39 | 45 |
// check if the referer URL if available |
| 40 | 46 |
$referer = isset($_SERVER['HTTP_REFERER']) ? $_SERVER['HTTP_REFERER'] : |
| 41 | 47 |
(isset($HTTP_SERVER_VARS['HTTP_REFERER']) ? $HTTP_SERVER_VARS['HTTP_REFERER'] : ''); |
Also available in: Unified diff