Revision 656
Added by thorn almost 17 years ago
| groups.php | ||
|---|---|---|
| 30 | 30 |
// Create new database object |
| 31 | 31 |
$database = new database(); |
| 32 | 32 |
|
| 33 |
if(!isset($_POST['action']) OR $_POST['action'] != "modify" AND $_POST['action'] != "delete") {
|
|
| 33 |
if(!isset($_POST['action']) OR ($_POST['action'] != "modify" AND $_POST['action'] != "delete")) {
|
|
| 34 | 34 |
header("Location: index.php");
|
| 35 | 35 |
exit(0); |
| 36 | 36 |
} |
Also available in: Unified diff
Added some missing add_slashes(), get_post_escaped(), and strip_tags() for $_POST, $_GET and $_REQUEST-data. Also for $_SERVER['PHP_SELF'].