diff options
Diffstat (limited to 'codebase')
| -rw-r--r-- | codebase/base_connector.php | 5 | ||||
| -rw-r--r-- | codebase/xss_filter.php | 5 |
2 files changed, 7 insertions, 3 deletions
diff --git a/codebase/base_connector.php b/codebase/base_connector.php index b42b811..850f6d7 100644 --- a/codebase/base_connector.php +++ b/codebase/base_connector.php @@ -741,7 +741,10 @@ class Connector { */ protected function xml_end(){ $this->fill_collections(); - return $this->extra_output."</data>"; + if (isset($this->extra_output)) + return $this->extra_output."</data>"; + else + return "</data>"; } protected function fill_collections($list=""){ diff --git a/codebase/xss_filter.php b/codebase/xss_filter.php index c80c7d2..ed0a309 100644 --- a/codebase/xss_filter.php +++ b/codebase/xss_filter.php @@ -171,9 +171,10 @@ class ConnectorSecurity{ die(); } static function checkCSRF($edit){ - if(!isset($_SESSION)) @session_start(); - if (ConnectorSecurity::$security_key){ + if (!isset($_SESSION)) + @session_start(); + if ($edit=== true){ if (!isset($_POST[ConnectorSecurity::$security_var])) return ConnectorSecurity::CSRF_detected(); |