fixed problems pointed out by enricomilanese-AT-gmail.com

2024-10-05 09:42:30 +02:00 · 2007-09-16 06:52:32 +00:00 · 2007-09-16 06:52:32 +00:00 · d9f9c0bd45
commit d9f9c0bd45
parent eb70245a4b
2 changed files with 4 additions and 0 deletions
--- a/admin/inc/class.uicategories.inc.php
+++ b/admin/inc/class.uicategories.inc.php
@ -314,6 +314,8 @@

 		function edit()
 		{
+			if (!preg_match('/^(#[0-9a-f]+|[a-z]+)?$/i',$_POST['cat_data']['color'])) unset($_POST['cat_data']['color']);
+			if (!preg_match('/^[-_\.a-z0-9]+\.(png|gif|jpe?g)$/i',$_POST['cat_data']['icon'])) unset($_POST['cat_data']['icon']);
 			$new_parent			= (int)$_POST['new_parent'];
 			$cat_parent			= (int)$_POST['cat_parent'];
 			$cat_name			= $_POST['cat_name'];
--- a/preferences/inc/class.uicategories.inc.php
+++ b/preferences/inc/class.uicategories.inc.php
@ -331,6 +331,8 @@
 				'cats_level'	=> $cats_level,
 				'cat_id'		=> $cat_id
 			);
+			if (!preg_match('/^(#[0-9a-f]+|[a-z]+)?$/i',$_POST['cat_data']['color'])) unset($_POST['cat_data']['color']);
+			if (!preg_match('/^[-_\.a-z0-9]+\.(png|gif|jpe?g)$/i',$_POST['cat_data']['icon'])) unset($_POST['cat_data']['icon']);
 			$new_parent			= $_POST['new_parent'];
 			$cat_parent			= $_POST['cat_parent'];
 			$cat_name			= $_POST['cat_name'];