root/ip/trunk/cms_menu.php
Download diff| 151 | 154 | ||
|---|---|---|---|
38 | redirect(append_sid(CMS_PAGE_LOGIN . '?redirect=cms_menu.' . PHP_EXT . '&admin=1', true)); | 38 | redirect(append_sid(CMS_PAGE_LOGIN . '?redirect=cms_menu.' . PHP_EXT . '&admin=1', true)); |
39 | } | 39 | } |
40 | 40 | ||
41 | if (!empty($_REQUEST['mode']) && ($_POST['mode'] != $_GET['mode'])) | 41 | if (!empty($_REQUEST['mode']) && !empty($_GET['mode']) && ($_POST['mode'] != $_GET['mode'])) |
42 | { | 42 | { |
43 | $_REQUEST['mode'] = $_GET['mode']; | 43 | $_REQUEST['mode'] = $_GET['mode']; |
44 | $_POST['mode'] = $_GET['mode']; | 44 | $_POST['mode'] = $_GET['mode']; |
... | ... | ||
57 | $item_type = isset($_POST['add_cat']) ? 'category_item' : $item_type; | 57 | $item_type = isset($_POST['add_cat']) ? 'category_item' : $item_type; |
58 | $item_type = htmlspecialchars($item_type); | 58 | $item_type = htmlspecialchars($item_type); |
59 | 59 | ||
60 | if (!empty($_REQUEST['action']) && ($_POST['action'] != $_GET['action'])) | 60 | if (!empty($_REQUEST['action']) && !empty($_GET['action']) && ($_POST['action'] != $_GET['action'])) |
61 | { | 61 | { |
62 | $_REQUEST['action'] = $_GET['action']; | 62 | $_REQUEST['action'] = $_GET['action']; |
63 | $_POST['action'] = $_GET['action']; | 63 | $_POST['action'] = $_GET['action']; |