github/myvesta
1
0
Fork 0
mirror of https://github.com/myvesta/vesta synced 2025-08-20 13:24:25 -07:00
Code Issues Projects Releases Packages Wiki Activity Actions

Flatta's security fixes from PullRequest #516

Browse source
This commit is contained in:
Serghey Rodin 2015-12-11 21:32:07 +02:00
commit 95850df8d1
6 changed files with 9 additions and 8 deletions
Download patch file Download diff file Expand all files Collapse all files

2
web/search/index.php
View file

@ -28,8 +28,8 @@ $lang = 'ru_RU.utf8';
//setlocale(LC_ALL, $lang);
// Data
$q = escapeshellarg($q);
if ($_SESSION['user'] == 'admin') {
$q = escapeshellarg($q);
exec (VESTA_CMD."v-search-object ".$q." json", $output, $return_var);
$data = json_decode(implode('', $output), true);
include($_SERVER['DOCUMENT_ROOT'].'/templates/admin/list_search.html');