Project

General

Profile

« Previous | Next » 

Revision 1494

Added by Dietmar over 13 years ago

Fixed save wrong template directory in database

View differences:

branches/2.8.x/CHANGELOG
12 12 

  		




  13
  13
  
    
=============================== FEATURES FREEZE ================================


  		




  14
  14
  
    
----------------------------------- Fixes 2.8.2 --------------------------------


  		




  
  15
  
    
11 Aug-2011 Build 1494 Dietmar Woellbrink (Luisehahne)


  		




  
  16
  
    
# Fixed save wrong template directory in database 


  		




  15
  17
  
    
11 Aug-2011 Build 1493 Dietmar Woellbrink (Luisehahne)


  		




  16
  18
  
    
# Ticket #1106 FatalError in groups module


  		




  17
  19
  
    
11 Aug-2011 Build 1492 Dietmar Woellbrink (Luisehahne)


  		












  

    
      branches/2.8.x/wb/admin/templates/details.php
    
  





  33
  33
  
    
	header("Location: index.php");


  		




  34
  34
  
    
	exit(0);


  		




  35
  35
  
    
} else {


  		




  36
  
  
    
	$file = preg_replace("/\W/", "", $_POST['file']);  // fix secunia 2010-92-2


  		




  
  36
  
    
	$file = preg_replace('/[^a-z0-9_-]/i', "", $_POST['file']);  // fix secunia 2010-92-2


  		




  37
  37
  
    
}


  		




  38
  38
  
    

  		




  39
  39
  
    
// Check if the template exists


  		












  

    
      branches/2.8.x/wb/admin/pages/settings2.php
    
  





  62
  62
  
    
$parent = intval($admin->get_post('parent')); // fix secunia 2010-91-3


  		




  63
  63
  
    
$visibility = $admin->get_post_escaped('visibility');


  		




  64
  64
  
    
if (!in_array($visibility, array('public', 'private', 'registered', 'hidden', 'none'))) {$visibility = 'public';} // fix secunia 2010-93-3


  		




  65
  
  
    
$template = preg_replace("/\W/", "", $admin->get_post('template')); // fix secunia 2010-93-3


  		




  
  65
  
    
$template = preg_replace('/[^a-z0-9_-]/i', "", $admin->get_post('template')); // fix secunia 2010-93-3


  		




  
  66
  
    
$template = (($template == DEFAULT_TEMPLATE ) ? '' : $template);


  		




  66
  67
  
    
$target = preg_replace("/\W/", "", $admin->get_post('target'));


  		




  67
  68
  
    
$admin_groups = $admin->get_post_escaped('admin_groups');


  		




  68
  69
  
    
$viewing_groups = $admin->get_post_escaped('viewing_groups');


  		












  

    
      branches/2.8.x/wb/admin/pages/add.php
    
  





  33
  33
  
    
// Get values


  		




  34
  34
  
    
$title = $admin->get_post_escaped('title');


  		




  35
  35
  
    
$title = htmlspecialchars($title);


  		




  36
  
  
    
$module = preg_replace("/\W/", "", $admin->get_post('type')); // fix secunia 2010-93-4


  		




  
  36
  
    
$module = preg_replace('/[^a-z0-9_-]/i', "", $admin->get_post('type')); // fix secunia 2010-93-4


  		




  37
  37
  
    
$parent = intval($admin->get_post('parent')); // fix secunia 2010-91-2


  		




  38
  38
  
    
$visibility = $admin->get_post('visibility');


  		




  39
  39
  
    
if (!in_array($visibility, array('public', 'private', 'registered', 'hidden', 'none'))) {$visibility = 'public';} // fix secunia 2010-91-2


  		












  

    
      branches/2.8.x/wb/admin/interface/version.php
    
  





  52
  52
  
    

  		




  53
  53
  
    
// check if defined to avoid errors during installation (redirect to admin panel fails if PHP error/warnings are enabled)


  		




  54
  54
  
    
if(!defined('VERSION')) define('VERSION', '2.8.2');


  		




  55
  
  
    
if(!defined('REVISION')) define('REVISION', '1493');


  		




  
  55
  
    
if(!defined('REVISION')) define('REVISION', '1494');


  		












  

    
      branches/2.8.x/wb/admin/modules/details.php
    
  





  38
  38
  
    
}


  		




  39
  39
  
    
else


  		




  40
  40
  
    
{


  		




  41
  
  
    
	$file = preg_replace("/\W/", "", $_POST['file']);  // fix secunia 2010-92-1


  		




  
  41
  
    
	$file = preg_replace('/[^a-z0-9_-]/i', "", $_POST['file']);  // fix secunia 2010-92-1


  		




  42
  42
  
    
}


  		




  43
  43
  
    

  		




  44
  44
  
    
// Check if the module exists


  		












  

    
      branches/2.8.x/wb/admin/admintools/tool.php
    
  





  39
  39
  
    
$admin = new admin('admintools', 'admintools', $admin_header );


  		




  40
  40
  
    

  		




  41
  41
  
    
// Check if tool is installed


  		




  42
  
  
    
$result = $database->query("SELECT * FROM ".TABLE_PREFIX."addons WHERE type = 'module' AND function = 'tool' AND directory = '".preg_replace("/\W/", "", $tool)."'");


  		




  
  42
  
    
$result = $database->query("SELECT * FROM ".TABLE_PREFIX."addons WHERE type = 'module' AND function = 'tool' AND directory = '".preg_replace('/[^a-z0-9_-]/i', "", $tool)."'");


  		




  43
  43
  
    
if($result->numRows() == 0) {


  		




  44
  44
  
    
	header("Location: index.php");


  		




  45
  45
  
    
	exit(0);


  		












Also available in:  Unified diff