Changeset 990 for ngcms/trunk/engine/includes/inc/lib_admin.php

Timestamp:

04/24/12 00:44:33 (13 months ago)

Author:

ngcms

Message:

% Устранение XSS уязвимости при удалении новости

Files:

• ngcms/trunk/engine/includes/inc/lib_admin.php (modified) (6 diffs)

ngcms/trunk/engine/includes/inc/lib_admin.php

@@ -85 +85 @@
                                 if ((($rec['approve'] == 1)&&($setValue['approve'] != 1) && (!$perm[$permGroupMode.'.unpublish']))||
                                         (($rec['approve'] < 1)&&($setValue['approve'] == 1) && (!$perm[$permGroupMode.'.publish']))) {
-                                        $results []= '#'.$rec['id'].' ('.$rec['title'].') - '.$lang['perm.denied'];
+                                        $results []= '#'.$rec['id'].' ('.secure_html($rec['title']).') - '.$lang['perm.denied'];
                                         continue;
                                 }
@@ -94 +94 @@
                         if (isset($setValue['mainpage'])) {
                                 if (!$perm[$permGroupMode.'.mainpage']) {
-                                        $results []= '#'.$rec['id'].' ('.$rec['title'].') - '.$lang['perm.denied'];
+                                        $results []= '#'.$rec['id'].' ('.secure_html($rec['title']).') - '.$lang['perm.denied'];
                                         continue;
                                 }
@@ -103 +103 @@
                         if (count($setValue) > $ic) {
                                 if (!$perm[$permGroupMode.'.modify'.(($rec['approve'] == 1)?'.published':'')]) {
-                                        $results []= '#'.$rec['id'].' ('.$rec['title'].') - '.$lang['perm.denied'];
+                                        $results []= '#'.$rec['id'].' ('.secure_html($rec['title']).') - '.$lang['perm.denied'];
                                         continue;
                                 }
@@ -111 +111 @@
 //                              continue;
                 }
-                $results []= '#'.$rec['id'].' ('.$rec['title'].') - Ok';
+                $results []= '#'.$rec['id'].' ('.secure_html($rec['title']).') - Ok';
 
                 $nList[]= $rec['id'];
@@ -230 +230 @@
 
                 if ((!$perm[$permGroupMode.'.delete'.(($nrow['approve'] == 1)?'.published':'')]) && $permCheck) {
-                        $results []= '#'.$nrow['id'].' ('.$nrow['title'].') - '.$lang['perm.denied'];
+                        $results []= '#'.$nrow['id'].' ('.secure_html($nrow['title']).') - '.$lang['perm.denied'];
                         continue;
                 }
@@ -282 +282 @@
                 }
 
-                $results []= '#'.$nrow['id'].' ('.$nrow['title'].') - Ok';
+                $results []= '#'.$nrow['id'].' ('.secure_html($nrow['title']).') - Ok';
         }
         msg(array("text" => $lang['msgo_deleted'], "info" => join("<br/>\n", $results)));