mbirth/LuckyCoinkydink
1
0
Fork 0
Code Issues Pull Requests Activity

This Patch is EVIL and has SEVERLY security impacts, can lead to people easily putting XSS on your page or changing the config of your blog without requiring a login

Browse Source 
Uncommented.
This commit is contained in:
Garvin Hicking 2008-04-14 05:26:26 +00:00
parent 75a9ad7c2c
commit 23b34ba3eb
1 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
templates/bulletproof/config.inc.php
View File

@ -268,11 +268,11 @@ $template_config = array(
)
);
if (isset($_POST['serendipity']['template'])) {
$template_loaded_config =$_POST['serendipity']['template'];
} else {
#if (isset($_POST['serendipity']['template'])) {
# $template_loaded_config =$_POST['serendipity']['template'];
#} else {
$template_loaded_config = serendipity_loadThemeOptions($template_config, $serendipity['smarty_vars']['template_option']);
}
#}
$navlinks = array();