diff options
author | jim-p <jimp@pfsense.org> | 2015-03-05 10:00:56 -0500 |
---|---|---|
committer | jim-p <jimp@pfsense.org> | 2015-03-05 10:00:56 -0500 |
commit | 033663df4566d15942e235e422f4b6629ed1d1e0 (patch) | |
tree | 165430bcd761406d8b8d22e7a191d00c286adc6e | |
parent | 108be9a52933b4f77ee9d8488a90494f7c2bace0 (diff) | |
download | pfsense-033663df4566d15942e235e422f4b6629ed1d1e0.zip pfsense-033663df4566d15942e235e422f4b6629ed1d1e0.tar.gz |
Do not render the services_unbound_acls page with an invalid ID.
-rw-r--r-- | usr/local/www/services_unbound_acls.php | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/usr/local/www/services_unbound_acls.php b/usr/local/www/services_unbound_acls.php index 936f3ee..7a1af28 100644 --- a/usr/local/www/services_unbound_acls.php +++ b/usr/local/www/services_unbound_acls.php @@ -46,6 +46,11 @@ if (isset($_POST['aclid'])) { $id = $_POST['aclid']; } +if (!empty($id) && !is_numeric($id)) { + pfSenseHeader("services_unbound_acls.php"); + exit; +} + $act = $_GET['act']; if (isset($_POST['act'])) { $act = $_POST['act']; |