diff options
| author | jim-p <jimp@pfsense.org> | 2014-04-09 08:45:31 -0400 |
|---|---|---|
| committer | jim-p <jimp@pfsense.org> | 2014-04-09 08:45:31 -0400 |
| commit | d22169cfd68a26c04ca6d1aa997575f1b3e4cc80 (patch) | |
| tree | 70e5bb80906216cbcb56e382a7a945c3026ef046 | |
| parent | def5d042c9c51874e662a1175e94ce948224f2a7 (diff) | |
| download | pfsense-d22169cfd68a26c04ca6d1aa997575f1b3e4cc80.zip pfsense-d22169cfd68a26c04ca6d1aa997575f1b3e4cc80.tar.gz | |
Use an alphanumeric test rather than purely is_numericint because the ID is generated by uniqid and is not purely numeric. Fixes #3591RELENG_2_1_2
| -rw-r--r-- | usr/local/www/system_crlmanager.php | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/usr/local/www/system_crlmanager.php b/usr/local/www/system_crlmanager.php index 5d244a1..22665ba 100644 --- a/usr/local/www/system_crlmanager.php +++ b/usr/local/www/system_crlmanager.php @@ -49,9 +49,9 @@ $crl_methods = array( "internal" => gettext("Create an internal Certificate Revocation List"), "existing" => gettext("Import an existing Certificate Revocation List")); -if (is_numericint($_GET['id'])) +if (ctype_alnum($_GET['id'])) $id = $_GET['id']; -if (isset($_POST['id']) && is_numericint($_POST['id'])) +if (isset($_POST['id']) && ctype_alnum($_POST['id'])) $id = $_POST['id']; if (!is_array($config['ca'])) |
