Revision 605
Added by thorn almost 17 years ago
| comment.php | ||
|---|---|---|
| 27 | 27 |
require('../../config.php');
|
| 28 | 28 |
|
| 29 | 29 |
// Check if there is a post id |
| 30 |
if(!isset($_GET['id']) OR !is_numeric($_GET['id'])) {
|
|
| 30 |
if(!isset($_GET['id']) OR !is_numeric($_GET['id']) OR !isset($_GET['sid']) OR !is_numeric($_GET['sid'])) {
|
|
| 31 | 31 |
header("Location: ".WB_URL.PAGES_DIRECTORY."");
|
| 32 | 32 |
exit(0); |
| 33 | 33 |
} |
| ... | ... | |
| 64 | 64 |
exit(0); |
| 65 | 65 |
} |
| 66 | 66 |
|
| 67 |
// don't allow commenting if ASP enabled and user doesn't comes from view.php |
|
| 68 |
if(ENABLED_ASP && !isset($_SESSION['comes_from_view'])) {
|
|
| 67 |
// don't allow commenting if ASP enabled and user doesn't comes from the right view.php
|
|
| 68 |
if(ENABLED_ASP && (!isset($_SESSION['comes_from_view']) OR $_SESSION['comes_from_view']!=POST_ID)) {
|
|
| 69 | 69 |
header("Location: ".WB_URL.PAGES_DIRECTORY."");
|
| 70 | 70 |
exit(0); |
| 71 | 71 |
} |
| ... | ... | |
| 83 | 83 |
require(WB_PATH.'/index.php'); |
| 84 | 84 |
} |
| 85 | 85 |
} |
| 86 |
var_dump($_SESSION); |
|
| 86 | 87 |
|
| 87 |
|
|
| 88 | 88 |
?> |
Also available in: Unified diff
fixed some issues with CAPTCHA and ASP: Adjusted baseline of '*' in supplyed fonts to meet baseline of numbers. Added counter to ttf_image generation-loop. Removed now unneeded GD-lib checks. Improved ASP in news-module.