frio: sanitize $schema only if the variable is initialized
This commit is contained in:
parent
2687a42e3c
commit
578dc6f967
|
@ -61,7 +61,9 @@ if ($_REQUEST['schema']) {
|
|||
$schema = $_REQUEST['schema'];
|
||||
}
|
||||
|
||||
$schema = basename($schema);
|
||||
// Sanitize the data.
|
||||
$schema = !empty($schema) ? basename($schema) : "";
|
||||
|
||||
|
||||
if (($schema) && ($schema != '---')) {
|
||||
if (file_exists('view/theme/frio/schema/' . $schema . '.php')) {
|
||||
|
|
Loading…
Reference in New Issue
Block a user