From 53d214fbea3920513df1deb88de7621b1d92f873 Mon Sep 17 00:00:00 2001 From: Regis Houssin Date: Mon, 18 May 2009 14:41:32 +0000 Subject: [PATCH] Fix: just use exit --- htdocs/main.inc.php | 5 +---- 1 file changed, 1 insertion(+), 4 deletions(-) diff --git a/htdocs/main.inc.php b/htdocs/main.inc.php index 9b93ae4da5f..a746d7922f9 100644 --- a/htdocs/main.inc.php +++ b/htdocs/main.inc.php @@ -111,10 +111,7 @@ analyse_sql_injection($_POST); // The test to do is to check if referrer ($_SERVER['HTTP_REFERER']) is same web site than Dolibarr ($_SERVER['HTTP_HOST']). if (! defined('NOCSRFCHECK') && ! empty($_SERVER['HTTP_HOST']) && ! empty($_SERVER['HTTP_REFERER']) && ! eregi($_SERVER['HTTP_HOST'], $_SERVER['HTTP_REFERER'])) { - // exit; Why not using simply an exit ? - unset($_GET); - unset($_POST); - unset($_REQUEST); + exit; //Why not using simply an exit ? Yes we can... } // This is to make Dolibarr working with Plesk