diff options
| author |  mensonge | 2009-05-19 15:59:55 +0000 |
|---|---|---|
| committer | mensonge | 2009-05-19 15:59:55 +0000 |
| commit | 1eca2d231c79c046a3c122a09bd761fa8f641a6e (patch) | |
| tree | 7584daebb596d852e1d1a813a90bba5686925de3 /admin.php | |
| parent | 01c62e34fcd095e583f00a1890e6f311fbcb47dd (diff) | |
| download | scuttle-1eca2d231c79c046a3c122a09bd761fa8f641a6e.tar.gz scuttle-1eca2d231c79c046a3c122a09bd761fa8f641a6e.zip | |
Many interface changes: add 'back to the top links', a variable to display more bookmarks for admins...
git-svn-id: https://semanticscuttle.svn.sourceforge.net/svnroot/semanticscuttle/trunk@329 b3834d28-1941-0410-a4f8-b48e95affb8f
Diffstat (limited to 'admin.php')
| -rw-r--r-- | admin.php | 3 |
1 files changed, 1 insertions, 2 deletions
@@ -46,10 +46,9 @@ if ( !$currentUser->isAdmin() ) { }
@list($url, $action, $user) = isset($_SERVER['PATH_INFO']) ? explode('/', $_SERVER['PATH_INFO']) : NULL; - if ( $action -&& strpos($_SERVER['HTTP_REFERER'], ROOT.'admin.php') === 0 // Prevent CSRF attacks +&& (strpos($_SERVER['HTTP_REFERER'], ROOT.'admin') === 0) // Prevent CSRF attacks ) {
switch ( $action ) {
case 'delete':
|