aboutsummaryrefslogtreecommitdiffstats
path: root/admin/database.php
diff options
context:
space:
mode:
Diffstat (limited to 'admin/database.php')
-rw-r--r--admin/database.php20
1 files changed, 12 insertions, 8 deletions
diff --git a/admin/database.php b/admin/database.php
index a257071..1d3404f 100644
--- a/admin/database.php
+++ b/admin/database.php
@@ -13,15 +13,19 @@ require '../core/application.php';
#===============================================================================
# Execute database command(s)
#===============================================================================
-if(HTTP::issetPOST(['token' => Application::getSecurityToken()], 'command')) {
- try {
- $Statement = $Database->query(HTTP::POST('command'));
+if(HTTP::issetPOST('command')) {
+ if(HTTP::issetPOST(['token' => Application::getSecurityToken()])) {
+ try {
+ $Statement = $Database->query(HTTP::POST('command'));
- do {
- $result[] = print_r($Statement->fetchAll(), TRUE);
- } while($Statement->nextRowset());
- } catch(PDOException $Exception) {
- $messages[] = $Exception->getMessage();
+ do {
+ $result[] = print_r($Statement->fetchAll(), TRUE);
+ } while($Statement->nextRowset());
+ } catch(PDOException $Exception) {
+ $messages[] = $Exception->getMessage();
+ }
+ } else {
+ $messages[] = $Language->text('error_security_csrf');
}
}
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-03 16:12:16 +0000