Fix #593 incorrect result from checkCSRF() in GET+JSON request

2026-01-09 03:32:00 +09:00 · 2016-09-25 12:35:50 +09:00 · 2016-09-25 12:35:50 +09:00 · 4f52122a3c
commit 4f52122a3c
parent 9a1936de40
1 changed files with 0 additions and 5 deletions
--- a/common/framework/security.php
+++ b/common/framework/security.php
@ -307,11 +307,6 @@ class Security
 	 */
 	public static function checkCSRF($referer = null)
 	{
-		if ($_SERVER['REQUEST_METHOD'] !== 'POST')
-		{
-			return false;
-		}
-		
 		if (!$referer)
 		{
 			$referer = strval($_SERVER['HTTP_REFERER']);