diff options
author | brettp <brettp@36083f99-b078-4883-b0ff-0f9b5a30f544> | 2010-01-30 23:22:57 +0000 |
---|---|---|
committer | brettp <brettp@36083f99-b078-4883-b0ff-0f9b5a30f544> | 2010-01-30 23:22:57 +0000 |
commit | 706b3140362c2f9eb2029da44ee0f0c993ba3046 (patch) | |
tree | 2c0bd1c115ce7257de21fe3012383d3fff15e52b /engine/lib/elgglib.php | |
parent | 23bf40e9054d5a3c466f04455d355c9622904bf7 (diff) | |
download | elgg-706b3140362c2f9eb2029da44ee0f0c993ba3046.tar.gz elgg-706b3140362c2f9eb2029da44ee0f0c993ba3046.tar.bz2 |
Added checking for $query array in elgg_validate_action_url().
git-svn-id: http://code.elgg.org/elgg/trunk@3864 36083f99-b078-4883-b0ff-0f9b5a30f544
Diffstat (limited to 'engine/lib/elgglib.php')
-rw-r--r-- | engine/lib/elgglib.php | 8 |
1 files changed, 7 insertions, 1 deletions
diff --git a/engine/lib/elgglib.php b/engine/lib/elgglib.php index 4c45da6e9..91d49d97d 100644 --- a/engine/lib/elgglib.php +++ b/engine/lib/elgglib.php @@ -2482,7 +2482,13 @@ function elgg_http_build_url(array $parts) { */ function elgg_validate_action_url($link) { $url = parse_url($link); - parse_str($url['query'], $query); + + if (isset($url['query'])) { + parse_str($url['query'], $query); + } else { + $query = array(); + } + if (array_key_exists('__elgg_ts', $query) && array_key_exists('__elgg_token', $query)) { return $link; } |