Added check for content of redirect variable.

Till Brehm · Till Brehm · commit 698294a2db2f · 2015-04-17T18:21:47.000+02:00
diff --git a/interface/web/capp.php b/interface/web/capp.php
@@ -43,6 +43,7 @@
 }
 
 if(!preg_match("/^[a-z]{2,20}$/i", $mod)) die('module name contains unallowed chars.');
+if($redirect != '' && !preg_match("/^[a-z0-9]+\/[a-z0-9_\.\-]+\?id=[0-9]{1,5}$/i", $redirect)) die('redirect contains unallowed chars.');
 
 //* Check if user may use the module.
 $user_modules = explode(",", $_SESSION["s"]["user"]["modules"]);

Original file line number	Diff line number	Diff line change
`@@ -43,6 +43,7 @@`
`43`	`43`	`}`
`44`	`44`
`45`	`45`	`if(!preg_match("/^[a-z]{2,20}$/i", $mod)) die('module name contains unallowed chars.');`
	`46`	`+if($redirect != '' && !preg_match("/^[a-z0-9]+\/[a-z0-9_\.\-]+\?id=[0-9]{1,5}$/i", $redirect)) die('redirect contains unallowed chars.');`
`46`	`47`
`47`	`48`	`//* Check if user may use the module.`
`48`	`49`	`$user_modules = explode(",", $_SESSION["s"]["user"]["modules"]);`