admin.php allowed to see intro panel to non-loggedin users! (not really harmful, it just looked as if it was)
This commit is contained in:
real_nowhereman
parent
64e3040cd3
commit
cacf56f276
@ -56,6 +56,14 @@
|
|||||||
$fp_admin =& new $panelclass($smarty);
|
$fp_admin =& new $panelclass($smarty);
|
||||||
|
|
||||||
}
|
}
|
||||||
|
|
||||||
|
/* check if user is loggedin */
|
||||||
|
|
||||||
|
if (!user_loggedin()) {
|
||||||
|
utils_redirect("login.php");
|
||||||
|
die();
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
$action = isset($_GET['action'])? $_GET['action'] : 'default';
|
$action = isset($_GET['action'])? $_GET['action'] : 'default';
|
||||||
if (!$fp_admin)
|
if (!$fp_admin)
|
||||||
@ -71,13 +79,7 @@
|
|||||||
$smarty->assign('panel_url', $panel_url);
|
$smarty->assign('panel_url', $panel_url);
|
||||||
$smarty->assign('action_url', $action_url);
|
$smarty->assign('action_url', $action_url);
|
||||||
|
|
||||||
/* check if user is loggedin */
|
|
||||||
|
|
||||||
if (!user_loggedin()) {
|
|
||||||
utils_redirect("login.php");
|
|
||||||
die();
|
|
||||||
}
|
|
||||||
|
|
||||||
if (!empty($_POST))
|
if (!empty($_POST))
|
||||||
check_admin_referer("admin_{$panel}_{$action}");
|
check_admin_referer("admin_{$panel}_{$action}");
|
||||||
|
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user