summaryrefslogtreecommitdiff
path: root/www-ssl
diff options
context:
space:
mode:
Diffstat (limited to 'www-ssl')
-rwxr-xr-xwww-ssl/inc/secure.php13
-rwxr-xr-xwww-ssl/nonpublic/index.php2
2 files changed, 12 insertions, 3 deletions
diff --git a/www-ssl/inc/secure.php b/www-ssl/inc/secure.php
index 786c18a6..ed3a514b 100755
--- a/www-ssl/inc/secure.php
+++ b/www-ssl/inc/secure.php
@@ -2,6 +2,9 @@
//soll dein funktion entahlten die alle übergebenen parameter überprüft
//'`'"
+if( $DEBUG)
+ echo "secure.php START<br>\n";
+
foreach ($_GET as $k => $v)
{
$v = htmlspecialchars($v);
@@ -13,7 +16,9 @@ foreach ($_GET as $k => $v)
exit;
}
$_GET[$k] = $v;
- echo "GET $k=\"$v\"<br>";
+
+ if( $DEBUG)
+ echo "GET $k=\"$v\"<br>";
}
foreach ($_POST as $k => $v)
@@ -26,7 +31,11 @@ foreach ($_POST as $k => $v)
exit;
}
$_POST[$k] = $v;
- echo "POST $k=\"$v\"<br>";
+
+ if( $DEBUG)
+ echo "POST $k=\"$v\"<br>";
}
+if( $DEBUG)
+ echo "secure.php END<br>\n";
?>
diff --git a/www-ssl/nonpublic/index.php b/www-ssl/nonpublic/index.php
index 743534e1..54cbabf4 100755
--- a/www-ssl/nonpublic/index.php
+++ b/www-ssl/nonpublic/index.php
@@ -7,7 +7,7 @@ include ("./inc/crypt.php");
session_start(); // alte Session - falls vorhanden - wiederherstellen...
-if (!IsSet($_SESSION['UID'])) {
+if ( IsSet($_POST["user"])) {
$sql = "select * from User where Nick = '". $_POST["user"]. "'";