Wavyzz/dolibarr
2
0
Fork 1
mirror of https://github.com/Dolibarr/dolibarr.git synced 2026-01-04 16:12:39 +01:00
Code Issues Packages Projects Releases Wiki Activity

FIX sanitize param $action

Browse Source
This commit is contained in:
Laurent Destailleur
2018-11-05 17:53:31 +01:00
parent dd70f1bf08
commit c0f4ec5a3e
136 changed files with 151 additions and 147 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
htdocs/core/lib/functions.lib.php
View File

@@ -6811,18 +6811,19 @@ function dol_getIdFromCode($db, $key, $tablename, $fieldkey='code', $fieldid='id
* Verify if condition in string is ok or not
*
* @param string $strRights String with condition to check
* @return boolean True or False. Return true if strRights is ''
* @return boolean True or False. Return True if strRights is ''
*/
function verifCond($strRights)
{
global $user,$conf,$langs;
global $leftmenu;
global $action,$leftmenu;
global $rights; // To export to dol_eval function
//print $strRights."<br>\n";
$rights = true;
if ($strRights != '')
{
$action = preg_replace('/[a-zA-Z0-9_')
//$tab_rights = explode('&&', $strRights);
//$i = 0;
//while (($i < count($tab_rights)) && ($rights == true)) {