Changeset 1439

Timestamp:

02/03/08 15:36:24 (7 months ago)

Author:

Neal

Message:

Added validation to prevent users from subscribing to non-existent topics. Discovered by lie2815.

Files:

• branches/punbb-1.3-dev/upload/misc.php (modified) (1 diff)

branches/punbb-1.3-dev/upload/misc.php

@@ -421 +421 @@
-                message($lang_common['Bad request']);
-
+        // Make sure the user can view the topic
+        $query = array(
+                'SELECT'        => '1',
+                'FROM'          => 'topics AS t',
+                'JOINS'         => array(
+                        array(
+                                'LEFT JOIN'             => 'forum_perms AS fp',
+                                'ON'                    => '(fp.forum_id=t.forum_id AND fp.group_id='.$pun_user['g_id'].')'
+                        )
+                ),
+                'WHERE'         => '(fp.read_forum IS NULL OR fp.read_forum=1) AND t.id='.$topic_id.' AND t.moved_to IS NULL'
+        );
+        ($hook = get_hook('mi_qr_subscribe_topic_exists')) ? eval($hook) : null;
+        $result = $db->query_build($query) or error(__FILE__, __LINE__);
+        if (!$db->num_rows($result))
+                message($lang_common['Bad request']);
+
-        $query = array(
-                'SELECT'        => '1',