projects
/
Pman.Admin
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(parent:
dc0a2ef
)
GroupRights.php
author
Alan Knowles
<alan@roojs.com>
Fri, 14 Sep 2012 05:55:15 +0000
(13:55 +0800)
committer
Alan Knowles
<alan@roojs.com>
Fri, 14 Sep 2012 05:55:15 +0000
(13:55 +0800)
GroupRights.php
patch
|
blob
|
history
diff --git
a/GroupRights.php
b/GroupRights.php
index
848761d
..
c3976f8
100644
(file)
--- a/
GroupRights.php
+++ b/
GroupRights.php
@@
-32,6
+32,12
@@
class Pman_Admin_GroupRights extends Pman
if (!$this->hasPerm( 'Core.Groups','S')) { // listing groups..
$this->jerr("PERMISSION DENIED");
}
+
+ $g = DB_DataObject::Factory('group');
+ if (!$g->get($_GET['group_id'])) {
+ $this->jerr("group is invalid");
+ }
+
// DB_DataObject::debugLevel(1);
$p = DB_DataObject::factory('group_rights');
$p->group_id = (int)$_GET['group_id'];