Skip to content

Commit

Permalink
fix security vulnerability to reranking pages; reported by kyohpc
Browse files Browse the repository at this point in the history
  • Loading branch information
@dleffler
dleffler committed Nov 3, 2016
1 parent 9eeed1e commit 2ddffb2
Showing 1 changed file with 4 additions and 2 deletions.
6 changes: 4 additions & 2 deletions framework/modules/navigation/controllers/navigationController.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -39,6 +39,8 @@ class navigationController extends expController {
'move' => 'Move Page',
'remove' => 'Remove Page',
'reparent' => 'Reparent Page',
'dragndroprerank' => 'Rerank Page',
'dragndroprerank2' => 'Rerank Page',
);
public $remove_configs = array(
'aggregation',
Expand Down Expand Up @@ -858,8 +860,8 @@ public static function returnChildrenAsJSON2() {
public static function DragnDropReRank() {
global $db, $router;

$move = $router->params['move'];
$target = $router->params['target'];
$move = intval($router->params['move']);
$target = intval($router->params['target']);
$type = $router->params['type'];
$targSec = $db->selectObject("section","id=".$target);
// $targSec = new section($target);
Expand Down

0 comments on commit 2ddffb2

Please sign in to comment.