diff options
| author | Marc Alexander <admin@m-a-styles.de> | 2019-12-26 14:40:23 +0100 |
|---|---|---|
| committer | Marc Alexander <admin@m-a-styles.de> | 2020-01-03 17:21:42 +0100 |
| commit | 25c80df156ecd5389734265f8fdf6908212984b4 (patch) | |
| tree | 158061a36063fcb9d7c4ddeb1b571b4885fc01b1 /phpBB/includes | |
| parent | e7a6ed20e8ea073d7bf14890c766b17de444cf79 (diff) | |
| download | forums-25c80df156ecd5389734265f8fdf6908212984b4.tar forums-25c80df156ecd5389734265f8fdf6908212984b4.tar.gz forums-25c80df156ecd5389734265f8fdf6908212984b4.tar.bz2 forums-25c80df156ecd5389734265f8fdf6908212984b4.tar.xz forums-25c80df156ecd5389734265f8fdf6908212984b4.zip | |
[ticket/security-252] Check form token on marking PM
SECURITY-252
Diffstat (limited to 'phpBB/includes')
| -rw-r--r-- | phpBB/includes/ucp/ucp_pm.php | 10 |
1 files changed, 5 insertions, 5 deletions
diff --git a/phpBB/includes/ucp/ucp_pm.php b/phpBB/includes/ucp/ucp_pm.php index 3f982c8dd0..00d1ce7149 100644 --- a/phpBB/includes/ucp/ucp_pm.php +++ b/phpBB/includes/ucp/ucp_pm.php @@ -209,14 +209,14 @@ class ucp_pm $submit_mark = false; } + if (($move_pm || $submit_mark) && !check_form_key('ucp_pm_view')) + { + trigger_error('FORM_INVALID'); + } + // Move PM if ($move_pm) { - if (!check_form_key('ucp_pm_view')) - { - trigger_error('FORM_INVALID'); - } - $move_msg_ids = (isset($_POST['marked_msg_id'])) ? $request->variable('marked_msg_id', array(0)) : array(); $cur_folder_id = $request->variable('cur_folder_id', PRIVMSGS_NO_BOX); |