Changeset 1876:8da345a51989

Timestamp:

08/15/13 00:21:08 (12 years ago)

Author:

Lepeltier kévin

Branch:

Ticket #1527

Children:

1877:6e090b31f96d, 1907:d82b43aae156

Message:

Ticket #1527
Les variables $action et $redir sont initialisé avec les valeurs reçut par POST
La variable posts et initialisé avec un params vide.
On doit pouvoir faire mieux pour cette dernière.

File:

• admin/posts_actions.php (modified) (1 diff)

admin/posts_actions.php

@@ -16 +16 @@
 
 $params = array();
+$action = $_POST['action'];
+$posts = $core->blog->getPosts($params);
+
+
+if (isset($_POST['redir']) && strpos($_POST['redir'],'://') === false)
+{
+     $redir = $_POST['redir'];
+}
+else
+{
+     $redir =
+     'posts.php?user_id='.$_POST['user_id'].
+     '&cat_id='.$_POST['cat_id'].
+     '&status='.$_POST['status'].
+     '&selected='.$_POST['selected'].
+     '&month='.$_POST['month'].
+     '&lang='.$_POST['lang'].
+     '&sortby='.$_POST['sortby'].
+     '&order='.$_POST['order'].
+     '&page='.$_POST['page'].
+     '&nb='.$_POST['nb'];
+}
 
 /* Actions
 -------------------------------------------------------- */
-if (!empty($_POST['action']) && !empty($_POST['entries']))
+if (!empty($action) && !empty($_POST['entries']))
 {
      $entries = $_POST['entries'];
-     $action = $_POST['action'];
-     
-     if (isset($_POST['redir']) && strpos($_POST['redir'],'://') === false)
-     {
-          $redir = $_POST['redir'];
-     }
-     else
-     {
-          $redir =
-          'posts.php?user_id='.$_POST['user_id'].
-          '&cat_id='.$_POST['cat_id'].
-          '&status='.$_POST['status'].
-          '&selected='.$_POST['selected'].
-          '&month='.$_POST['month'].
-          '&lang='.$_POST['lang'].
-          '&sortby='.$_POST['sortby'].
-          '&order='.$_POST['order'].
-          '&page='.$_POST['page'].
-          '&nb='.$_POST['nb'];
-     }
      
      foreach ($entries as $k => $v) {