nsinnovations/fusionpbx
2
0
Fork 0
mirror of https://github.com/fusionpbx/fusionpbx.git synced 2026-01-06 19:53:56 +00:00
Code Issues Packages Projects Releases Wiki Activity

Increase the gateway domain_uuid security.

Browse Source
This commit is contained in:
Mark Crane
2015-01-22 11:32:16 +00:00
parent 79512bd009
commit 46f12b3fb3
1 changed files with 11 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
app/gateways/gateway_edit.php
View File

@@ -79,14 +79,20 @@ else {
$description = check_str($_POST["description"]);
}
if (count($_POST) > 0 && strlen($_POST["persistformvar"]) == 0) {
$msg = '';
if ($action == "update") {
$gateway_uuid = check_str($_POST["gateway_uuid"]);
//prevent the domain_uuid from not being set by someone without this permission
if (!permission_exists('gateway_domain')) {
$domain_uuid = $_SESSION['domain_uuid'];
}
if (count($_POST) > 0 && strlen($_POST["persistformvar"]) == 0) {
//get the id
if ($action == "update") {
$gateway_uuid = check_str($_POST["gateway_uuid"]);
}
//check for all required data
$msg = '';
//if (strlen($domain_uuid) == 0) { $msg .= $text['message-required']." ".$text['label-domain_uuid']."<br>\n"; }
if (strlen($gateway) == 0) { $msg .= $text['message-required']." ".$text['label-gateway']."<br>\n"; }
if ($register == "true") {