Changeset 4505
- Timestamp:
- Dec 16, 2009, 10:48:09 PM (14 years ago)
- Location:
- branches/2.0/admin
- Files:
-
- 2 edited
Legend:
- Unmodified
- Added
- Removed
-
branches/2.0/admin/cat_list.php
r4495 r4505 34 34 check_status(ACCESS_ADMINISTRATOR); 35 35 36 if (!empty($_POST) or isset($_GET['delete'])) 37 { 38 check_pwg_token(); 39 } 40 36 41 // +-----------------------------------------------------------------------+ 37 42 // | functions | … … 164 169 'CATEGORIES_NAV'=>$navigation, 165 170 'F_ACTION'=>$form_action, 171 'PWG_TOKEN' => get_pwg_token(), 166 172 )); 167 173 … … 239 245 { 240 246 $tpl_cat['U_DELETE'] = $self_url.'&delete='.$category['id']; 247 $tpl_cat['U_DELETE'].= '&pwg_token='.get_pwg_token(); 241 248 } 242 249 -
branches/2.0/admin/template/goto/cat_list.tpl
r2947 r4505 28 28 29 29 <form id="addVirtual" action="{$F_ACTION}" method="post"> 30 <input type="hidden" name="pwg_token" value="{$PWG_TOKEN}" /> 30 31 <p> 31 32 {'cat_add'|@translate} : <input type="text" name="virtual_name" /> … … 40 41 {if count($categories) } 41 42 <form id="categoryOrdering" action="{$F_ACTION}" method="post"> 43 <input type="hidden" name="pwg_token" value="{$PWG_TOKEN}" /> 42 44 <p> 43 45 <input class="submit" name="submitOrder" type="submit" value="{'Save order'|@translate}" {$TAG_INPUT_ENABLED} />
Note: See TracChangeset
for help on using the changeset viewer.