fanbinit/rhymix
1
0
Fork 0
mirror of https://github.com/Lastorder-DC/rhymix.git synced 2026-05-10 20:44:28 +09:00
Code Issues Projects Releases Packages Wiki Activity

Issue 3634 댓글 작성 시 checkCSRF() 적용

Browse source 
git-svn-id: http://xe-core.googlecode.com/svn/branches/maserati@13183 201d5d3c-b55e-5fd7-737f-ddc643e51545
This commit is contained in:
bnu 2013-11-08 03:44:27 +00:00
parent acd89ccd9a
commit 2ac48d1a3b
1 changed files with 5 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

5
modules/comment/comment.controller.php
View file

@ -185,6 +185,11 @@ class commentController extends comment
*/ */
function insertComment($obj, $manual_inserted = FALSE) function insertComment($obj, $manual_inserted = FALSE)
{ {
if(!$manual_inserted && !checkCSRF())
{
return new Object(-1, 'msg_invalid_request');
}
if(!is_object($obj)) if(!is_object($obj))
{ {
$obj = new stdClass(); $obj = new stdClass();