Revision 656
Added by thorn almost 17 years ago
users.php | ||
---|---|---|
30 | 30 |
// Create new database object |
31 | 31 |
$database = new database(); |
32 | 32 |
|
33 |
if(!isset($_POST['action']) OR $_POST['action'] != "modify" AND $_POST['action'] != "delete") {
|
|
33 |
if(!isset($_POST['action']) OR ($_POST['action'] != "modify" AND $_POST['action'] != "delete")) {
|
|
34 | 34 |
header("Location: index.php"); |
35 | 35 |
exit(0); |
36 | 36 |
} |
Also available in: Unified diff
Added some missing add_slashes(), get_post_escaped(), and strip_tags() for $_POST, $_GET and $_REQUEST-data. Also for $_SERVER['PHP_SELF'].