summaryrefslogtreecommitdiffstats
path: root/admin/subscriptions.php
diff options
context:
space:
mode:
Diffstat (limited to 'admin/subscriptions.php')
-rwxr-xr-xadmin/subscriptions.php4
1 files changed, 4 insertions, 0 deletions
diff --git a/admin/subscriptions.php b/admin/subscriptions.php
index f8e4c2c..0606c89 100755
--- a/admin/subscriptions.php
+++ b/admin/subscriptions.php
@@ -7,6 +7,10 @@ function removeSlashes(&$item, $key){
$item = stripslashes($item);
}
+if (!$csrf->verify($_POST['_csrf'], 'feedmanage')) {
+ die('Invalid CSRF token!');
+}
+
if (isset($_POST['opml']) || isset($_POST['add'])) {
// Load config and old OPML