diff options
| -rwxr-xr-x | www-ssl/inc/secure.php | 13 | ||||
| -rwxr-xr-x | www-ssl/nonpublic/index.php | 2 |
2 files changed, 12 insertions, 3 deletions
diff --git a/www-ssl/inc/secure.php b/www-ssl/inc/secure.php index 786c18a6..ed3a514b 100755 --- a/www-ssl/inc/secure.php +++ b/www-ssl/inc/secure.php @@ -2,6 +2,9 @@ //soll dein funktion entahlten die alle übergebenen parameter überprüft //'`'" +if( $DEBUG) + echo "secure.php START<br>\n"; + foreach ($_GET as $k => $v) { $v = htmlspecialchars($v); @@ -13,7 +16,9 @@ foreach ($_GET as $k => $v) exit; } $_GET[$k] = $v; - echo "GET $k=\"$v\"<br>"; + + if( $DEBUG) + echo "GET $k=\"$v\"<br>"; } foreach ($_POST as $k => $v) @@ -26,7 +31,11 @@ foreach ($_POST as $k => $v) exit; } $_POST[$k] = $v; - echo "POST $k=\"$v\"<br>"; + + if( $DEBUG) + echo "POST $k=\"$v\"<br>"; } +if( $DEBUG) + echo "secure.php END<br>\n"; ?> diff --git a/www-ssl/nonpublic/index.php b/www-ssl/nonpublic/index.php index 743534e1..54cbabf4 100755 --- a/www-ssl/nonpublic/index.php +++ b/www-ssl/nonpublic/index.php @@ -7,7 +7,7 @@ include ("./inc/crypt.php"); session_start(); // alte Session - falls vorhanden - wiederherstellen... -if (!IsSet($_SESSION['UID'])) { +if ( IsSet($_POST["user"])) { $sql = "select * from User where Nick = '". $_POST["user"]. "'"; |