[geeklog-cvs] Geeklog-1.x/public_html/layout/professional/admin/plugins editor.thtml, 1.5, 1.6
Michael Jervis
mjervis at qs1489.pair.com
Sat Apr 19 11:14:44 EDT 2008
Update of /cvsroot/geeklog/Geeklog-1.x/public_html/layout/professional/admin/plugins
In directory qs1489.pair.com:/tmp/cvs-serv35968/public_html/layout/professional/admin/plugins
Modified Files:
editor.thtml
Log Message:
CSRF protection in plugin admin (both POST and GET operations).
Index: editor.thtml
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/public_html/layout/professional/admin/plugins/editor.thtml,v
retrieving revision 1.5
retrieving revision 1.6
diff -C2 -d -r1.5 -r1.6
*** editor.thtml 25 Nov 2007 06:59:21 -0000 1.5
--- editor.thtml 19 Apr 2008 15:14:42 -0000 1.6
***************
*** 14,17 ****
--- 14,18 ----
<input type="hidden" name="pi_codeversion" value="{pi_codeversion}"{xhtml}>
<input type="hidden" name="pi_gl_version" value="{pi_gl_version}"{xhtml}>
+ <input type="hidden" name="{gltoken_name}" value="{gltoken}"{xhtml}>
</td>
</tr>
More information about the geeklog-cvs
mailing list