diff options
Diffstat (limited to 'admin/subscriptions.php')
-rwxr-xr-x | admin/subscriptions.php | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/admin/subscriptions.php b/admin/subscriptions.php index f63af8f..7b2fb6f 100755 --- a/admin/subscriptions.php +++ b/admin/subscriptions.php @@ -7,6 +7,10 @@ function removeSlashes(&$item, $key){ $item = stripslashes($item); } +if (!$csrf->verify($_POST['_csrf'], 'feedmanage')) { + die('Invalid CSRF token!'); +} + if (isset($_POST['opml']) || isset($_POST['add'])) { // Load old OPML |