Sec: Bad security test

This commit is contained in:
Laurent Destailleur 2015-01-14 19:10:48 +01:00
parent 806477977d
commit e3f3956bed
2 changed files with 7 additions and 4 deletions

View File

@ -4,11 +4,14 @@ define("NOCSRFCHECK",1); // We accept to go on this page from external web site.
require '../../main.inc.php';
if ($_SERVER['HTTP_HOST'] != 'localhost')
if ($_SERVER['REMOTE_ADDR'] != '127.0.0.1')
{
print "Page available only with url http://localhost/...";
print "Page available only frome remote address 127.0.0.1";
exit;
}
$usedolheader=0; // 1 = Test inside a dolibarr page, 0 = Use hard coded header

View File

@ -6,9 +6,9 @@ define('REQUIRE_JQUERY_MULTISELECT','select2');
require '../../main.inc.php';
include_once DOL_DOCUMENT_ROOT.'/core/lib/date.lib.php';
if ($_SERVER['HTTP_HOST'] != 'localhost')
if ($_SERVER['REMOTE_ADDR'] != '127.0.0.1')
{
print "Page available only with url http://localhost/...";
print "Page available only frome remote address 127.0.0.1";
exit;
}