summaryrefslogtreecommitdiff
path: root/admin.php
diff options
context:
space:
mode:
authormensonge <mensonge@b3834d28-1941-0410-a4f8-b48e95affb8f>2009-05-19 15:59:55 +0000
committermensonge <mensonge@b3834d28-1941-0410-a4f8-b48e95affb8f>2009-05-19 15:59:55 +0000
commit1eca2d231c79c046a3c122a09bd761fa8f641a6e (patch)
tree7584daebb596d852e1d1a813a90bba5686925de3 /admin.php
parent01c62e34fcd095e583f00a1890e6f311fbcb47dd (diff)
downloadsemanticscuttle-1eca2d231c79c046a3c122a09bd761fa8f641a6e.tar.gz
semanticscuttle-1eca2d231c79c046a3c122a09bd761fa8f641a6e.tar.bz2
Many interface changes: add 'back to the top links', a variable to display more bookmarks for admins...
git-svn-id: https://semanticscuttle.svn.sourceforge.net/svnroot/semanticscuttle/trunk@329 b3834d28-1941-0410-a4f8-b48e95affb8f
Diffstat (limited to 'admin.php')
-rw-r--r--admin.php3
1 files changed, 1 insertions, 2 deletions
diff --git a/admin.php b/admin.php
index c51d925..6061565 100644
--- a/admin.php
+++ b/admin.php
@@ -46,10 +46,9 @@ if ( !$currentUser->isAdmin() ) {
}
@list($url, $action, $user) = isset($_SERVER['PATH_INFO']) ? explode('/', $_SERVER['PATH_INFO']) : NULL;
-
if ( $action
-&& strpos($_SERVER['HTTP_REFERER'], ROOT.'admin.php') === 0 // Prevent CSRF attacks
+&& (strpos($_SERVER['HTTP_REFERER'], ROOT.'admin') === 0) // Prevent CSRF attacks
) {
switch ( $action ) {
case 'delete':