/ - Diff - WB 2.08.x - Tracking

« Previous | Next »

Revision 1735

 Aug-2012 Build 1735 Dietmar Woellbrink (Luisehahne)
     # fixed missing $admin-print_header() by security warning
     # fixed secureform.mtab because settings_page failed
 Aug-2012 Build 1734 Dietmar Woellbrink (Luisehahne)
     # typofix in /install/save.php and /admin/settings_page.php
 Aug-2012 Build 1733 Dietmar Woellbrink (Luisehahne)

     $admin = new admin('Pages', 'pages_settings',false);
     // Get page id
     if(!isset($_POST['page_id']) || (isset($_POST['page_id']) && preg_match('/[^0-9a-f]/i',$_POST['page_id'])) )
     if(!isset($_POST['page_id']) || (isset($_POST['page_id']) && preg_match('/[^0-9a-z]/i',$_POST['page_id'])) )
+    {
     	header("Location: index.php");
     	exit(0);
-...
     //	$page_id = $admin->checkIDKEY('page_id');
     //	$page_id = (int)$_POST['page_id']; || preg_match('/[^0-9a-f]/i',$_POST['page_id'])
     	if((!($page_id = $admin->checkIDKEY('page_id')))) {
     		$admin->print_header();
     		$admin->print_error($MESSAGE['GENERIC_SECURITY_ACCESS'], ADMIN_URL.'/pages/index.php');
+    	}
+    }

branches/2.8.x/wb/admin/interface/version.php
51	51
52	52	// check if defined to avoid errors during installation (redirect to admin panel fails if PHP error/warnings are enabled)
53	53	if(!defined('VERSION')) define('VERSION', '2.8.3');
54		if(!defined('REVISION')) define('REVISION', '1734');
	54	if(!defined('REVISION')) define('REVISION', '1735');
55	55	if(!defined('SP')) define('SP', '');

     		$key = md5($this->_salt.rand().uniqid('', true));
     		//shorten hash a bit
     		$key = str_replace(array("=","$","+"),array("-","_",""),base64_encode(pack('H*',$key)));
     		$key = str_replace(array("=","$","+","/"),array("","","",""),base64_encode(pack('H*',$key)));
     		// the key is unique, so store it in list
     		if( !array_key_exists($key,  $_SESSION[$this->_idkey_name])) {

Also available in: Unified diff