Revision 656
Added by thorn almost 17 years ago
| save.php | ||
|---|---|---|
| 31 | 31 |
|
| 32 | 32 |
// Update id, anchor and target |
| 33 | 33 |
if(isset($_POST['page_link'])) {
|
| 34 |
$foreign_page_id = $_POST['page_link'];
|
|
| 35 |
$page_target = $_POST['page_target'];
|
|
| 36 |
$url_target = $_POST['target'];
|
|
| 34 |
$foreign_page_id = $admin->add_slashes($_POST['page_link']);
|
|
| 35 |
$page_target = $admin->add_slashes($_POST['page_target']);
|
|
| 36 |
$url_target = $admin->add_slashes($_POST['target']);
|
|
| 37 | 37 |
|
| 38 | 38 |
$table_pages = TABLE_PREFIX.'pages'; |
| 39 | 39 |
$table_mod = TABLE_PREFIX.'mod_menu_link'; |
Also available in: Unified diff
Added some missing add_slashes(), get_post_escaped(), and strip_tags() for $_POST, $_GET and $_REQUEST-data. Also for $_SERVER['PHP_SELF'].