holm/egroupware
1
1
Fork 0
forked from extern/egroupware
Code Issues Pull Requests Packages Projects Releases Wiki Activity

using a white-list currently only matching favorites

Browse Source
This commit is contained in:
Ralf Becker 2015-08-24 13:32:27 +00:00
parent 2ec4c540cd
commit d31d46bea3
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
phpgwapi/inc/class.preferences.inc.php
View File

@ -218,9 +218,11 @@ class preferences
$prefs[$row['preference_owner']][$app] = self::unserialize($row['preference_value']); $prefs[$row['preference_owner']][$app] = self::unserialize($row['preference_value']);
// fix old PHP serialized attribute-values // fix old PHP serialized attribute-values
foreach($prefs[$row['preference_owner']][$app] as &$val) foreach($prefs[$row['preference_owner']][$app] as $name => &$val)
{ {
if (is_string($val) && $val[0] != 'a' && $val[1] != ':' && ($v = php_safe_unserialize($val))) if (is_string($val) && $val[0] != 'a' && $val[1] != ':' &&
// using a white-list currently only matching favorites
substr($name, 0, 9) == 'favorite_' && ($v = php_safe_unserialize($val)))
{ {
$val = $v; $val = $v;
} }