~ubuntu-branches/ubuntu/natty/mantis/natty-security

Viewing changes to manage_proj_cat_delete.php

Committer: Bazaar Package Importer
Author(s): Silvia Alvarez
Date: 2010-09-05 01:58:01 UTC
mfrom: (7.1.6 sid)
Revision ID: james.westby@ubuntu.com-20100905015801-as7wtx3ypwyu5o21

Tags: 1.1.8+dfsg-6

http://bugs.debian.org/595510

* debian/patches:
  + Added 08-CVE-2010-2574.diff:  Fix for CVE-2010-2574 XSS
    vulnerability when deleting categories that have been
    maliciously named.(Closes: #595510)

files added:
.pc/08-CVE-2010-2574.diff

.pc/08-CVE-2010-2574.diff/manage_proj_cat_delete.php

debian/patches/08-CVE-2010-2574.diff

files modified:
.pc/applied-patches

debian/changelog

debian/patches/series

debian/po/ca.po

debian/po/cs.po

debian/po/da.po

debian/po/de.po

debian/po/es.po

debian/po/eu.po

debian/po/fr.po

debian/po/gl.po

debian/po/it.po

debian/po/ja.po

debian/po/pt.po

debian/po/pt_BR.po

debian/po/ru.po

debian/po/sv.po

debian/po/tr.po

debian/po/vi.po

manage_proj_cat_delete.php

Show diffs side-by-side

added added

removed removed

manage_proj_cat_delete.php

$t_core_path = config_get( 'core_path' );

require_once( $t_core_path.'category_api.php' );

require_once( $t_core_path.'string_api.php' );

form_security_validate( 'manage_proj_cat_delete' );

# Confirm with the user

helper_ensure_confirmed( lang_get( 'category_delete_sure_msg' ) .

'<br/>' . lang_get( 'category' ) . ': ' . $f_category,

'<br/>' . lang_get( 'category' ) . ': ' . string_display_line($f_category),

lang_get( 'delete_category_button' ) );

category_remove( $f_project_id, $f_category );

Older »