iSharkFly-Open
/
DiscuzX
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

修复 一处附件免积分下载的漏洞

This commit is contained in:
Coxxs 2017-03-09 20:30:36 +08:00
parent 2ed1b98ea1
commit d12b00ba24
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
upload/source/module/forum/forum_misc.php
View File

@ -26,7 +26,7 @@ if($_GET['action'] == 'paysucceed') {
exit;
} elseif($_GET['action'] == 'attachcredit') {
if($_GET['formhash'] != FORMHASH) {
if($_GET['formhash'] != FORMHASH || !$_G['uid']) {
showmessage('undefined_action', NULL);
}