Skip to content
Permalink
Browse files Browse the repository at this point in the history
Added csrf prevention to edit_list.php
  • Loading branch information
arnoldle committed Jun 30, 2015
1 parent f4c9dfd commit a739f68
Show file tree
Hide file tree
Showing 2 changed files with 4 additions and 2 deletions.
4 changes: 2 additions & 2 deletions plugins/submitByMailPlugin.php
@@ -1,7 +1,7 @@
<?php

/**
* submitByMail plugin version 1.0b2.9
* submitByMail plugin version 1.0b2.9a
*
*
* @category phplist
Expand Down Expand Up @@ -40,7 +40,7 @@ class submitByMailPlugin extends phplistPlugin
{
// Parent properties overridden here
public $name = 'Submit by Mail Plugin';
public $version = '1.0b2.9';
public $version = '1.0b2.9a';
public $enabled = false;
public $authors = 'Arnold Lesikar';
public $description = 'Allows messages to be submitted to mailing lists by email';
Expand Down
2 changes: 2 additions & 0 deletions plugins/submitByMailPlugin/edit_list.php
Expand Up @@ -38,6 +38,8 @@
return;
}

verifyCsrfGetToken(); // Prevent cross-site request forgery

$sbm = $GLOBALS['plugins']['submitByMailPlugin'];

$editid = $_GET['eid'];
Expand Down

0 comments on commit a739f68

Please sign in to comment.