phpBMS

Show
Ignore:
Timestamp:
01/07/10 11:16:05 (2 years ago)
Author:
brieb
Message:
  • Added more rights look ups to certain pages
  • Fixed several path disclosure errors
Files:
1 modified

Legend:

Unmodified
Added
Removed

  • trunk/phpbms/modules/base/tabledefs_searchfields.php

    r704 r727  
    4242        include("include/tabledefs_searchfields_include.php"); 
    4343 
     44        if(!hasRights("Admin")) 
     45                goURL(APP_PATH."noaccess.php"); 
     46 
     47        if(!isset($_GET["id"])) 
     48                $error = new appError(-200, "Passed parameter missing", "Invalid request", true); 
    4449 
    4550        $searchfields = new tableSearchFields($db, $_GET["id"]); 
phpBMS vulnerability assesment provided by Orvant Inc. Copyright © 2010 Kreotek, LLC. All Rights reserved.