Revision 656
Added by thorn over 17 years ago
| details.php | ||
|---|---|---|
| 27 | 27 |
require('../../config.php');
|
| 28 | 28 |
require_once(WB_PATH .'/framework/functions.php'); |
| 29 | 29 |
|
| 30 |
// Print admin header |
|
| 31 |
require_once(WB_PATH.'/framework/class.admin.php'); |
|
| 32 |
$admin = new admin('Addons', 'modules_view');
|
|
| 33 |
|
|
| 30 | 34 |
// Get module name |
| 31 | 35 |
if(!isset($_POST['file']) OR $_POST['file'] == "") {
|
| 32 | 36 |
header("Location: index.php");
|
| 33 | 37 |
exit(0); |
| 34 | 38 |
} else {
|
| 35 |
$file = $_POST['file'];
|
|
| 39 |
$file = $admin->add_slashes($_POST['file']);
|
|
| 36 | 40 |
} |
| 37 | 41 |
|
| 38 | 42 |
// Check if the module exists |
| ... | ... | |
| 41 | 45 |
exit(0); |
| 42 | 46 |
} |
| 43 | 47 |
|
| 44 |
// Print admin header |
|
| 45 |
require_once(WB_PATH.'/framework/class.admin.php'); |
|
| 46 |
$admin = new admin('Addons', 'modules_view');
|
|
| 47 |
|
|
| 48 | 48 |
// Setup module object |
| 49 | 49 |
$template = new Template(ADMIN_PATH.'/modules'); |
| 50 | 50 |
$template->set_file('page', 'details.html');
|
Also available in: Unified diff
Added some missing add_slashes(), get_post_escaped(), and strip_tags() for $_POST, $_GET and $_REQUEST-data. Also for $_SERVER['PHP_SELF'].