Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums Archived Discussions Archived Libraries & Helpers SiteManagr - A simple open source CMS
SiteManagr - A simple open source CMS
  • El Forum
    Guest
  •  
#33
01-27-2010, 06:32 PM

[eluser]Dan King[/eluser]
[quote author="neillyons.info" date="1264656043"]Hi there,

When deleting always submit a form using the post method.

Let me explain why.

At the moment Sitemanagr deletes posts by passing the post id to the delete function of the posts controller. Like so:

Code:
http://example.com/admin/posts/delete/2

This will delete the post if you are logged in and have the right privileges.

But...

If your site accepts comments for example and a user submits that link as an image; like so:

Code:
<img src="http://example.com/admin/posts/delete/2" alt="This will delete your post."/>

Then when you yourself as the admin user come to browse through the comments on your site the browser will attempt to fetch that image by sending off a request to that URL. But because you are logged in whilst the browser is doing this the post will get deleted.

Hope that makes sense.[/quote]

Wow, yes that makes perfect sense. I see exactly what you mean, and I never would have thought of that. Thanks for pointing that out!


Messages In This Thread
SiteManagr - A simple open source CMS - by El Forum - 12-15-2009, 04:11 PM
SiteManagr - A simple open source CMS - by El Forum - 12-15-2009, 06:47 PM
SiteManagr - A simple open source CMS - by El Forum - 12-15-2009, 09:06 PM
SiteManagr - A simple open source CMS - by El Forum - 12-15-2009, 10:36 PM
SiteManagr - A simple open source CMS - by El Forum - 12-16-2009, 10:19 AM
SiteManagr - A simple open source CMS - by El Forum - 12-16-2009, 10:25 AM
SiteManagr - A simple open source CMS - by El Forum - 12-16-2009, 10:34 AM
SiteManagr - A simple open source CMS - by El Forum - 12-16-2009, 10:40 AM
SiteManagr - A simple open source CMS - by El Forum - 12-16-2009, 10:50 AM
SiteManagr - A simple open source CMS - by El Forum - 12-16-2009, 12:26 PM
SiteManagr - A simple open source CMS - by El Forum - 12-16-2009, 12:26 PM
SiteManagr - A simple open source CMS - by El Forum - 12-16-2009, 12:33 PM
SiteManagr - A simple open source CMS - by El Forum - 12-17-2009, 02:05 AM
SiteManagr - A simple open source CMS - by El Forum - 12-17-2009, 03:54 AM
SiteManagr - A simple open source CMS - by El Forum - 12-17-2009, 07:28 AM
SiteManagr - A simple open source CMS - by El Forum - 12-17-2009, 10:23 PM
SiteManagr - A simple open source CMS - by El Forum - 12-18-2009, 09:24 AM
SiteManagr - A simple open source CMS - by El Forum - 12-18-2009, 02:47 PM
SiteManagr - A simple open source CMS - by El Forum - 12-19-2009, 12:33 PM
SiteManagr - A simple open source CMS - by El Forum - 12-28-2009, 11:26 AM
SiteManagr - A simple open source CMS - by El Forum - 12-29-2009, 04:10 AM
SiteManagr - A simple open source CMS - by El Forum - 12-29-2009, 07:25 AM
SiteManagr - A simple open source CMS - by El Forum - 01-04-2010, 08:08 PM
SiteManagr - A simple open source CMS - by El Forum - 01-22-2010, 08:47 AM
SiteManagr - A simple open source CMS - by El Forum - 01-22-2010, 10:08 AM
SiteManagr - A simple open source CMS - by El Forum - 01-23-2010, 04:22 AM
SiteManagr - A simple open source CMS - by El Forum - 01-26-2010, 03:42 PM
SiteManagr - A simple open source CMS - by El Forum - 01-26-2010, 04:32 PM
SiteManagr - A simple open source CMS - by El Forum - 01-26-2010, 05:04 PM
SiteManagr - A simple open source CMS - by El Forum - 01-26-2010, 05:35 PM
SiteManagr - A simple open source CMS - by El Forum - 01-27-2010, 05:20 PM
SiteManagr - A simple open source CMS - by El Forum - 01-27-2010, 06:12 PM
SiteManagr - A simple open source CMS - by El Forum - 01-27-2010, 06:32 PM
SiteManagr - A simple open source CMS - by El Forum - 01-28-2010, 12:02 AM
SiteManagr - A simple open source CMS - by El Forum - 01-28-2010, 08:25 AM
SiteManagr - A simple open source CMS - by El Forum - 01-28-2010, 11:44 AM
SiteManagr - A simple open source CMS - by El Forum - 01-28-2010, 10:09 PM
SiteManagr - A simple open source CMS - by El Forum - 01-31-2010, 09:32 PM
SiteManagr - A simple open source CMS - by El Forum - 01-31-2010, 11:09 PM
SiteManagr - A simple open source CMS - by El Forum - 02-01-2010, 08:09 AM
SiteManagr - A simple open source CMS - by El Forum - 02-06-2010, 05:34 AM
SiteManagr - A simple open source CMS - by El Forum - 06-17-2010, 12:59 PM
SiteManagr - A simple open source CMS - by El Forum - 07-20-2010, 07:51 AM
SiteManagr - A simple open source CMS - by El Forum - 07-21-2010, 08:21 AM
SiteManagr - A simple open source CMS - by El Forum - 07-21-2010, 09:46 AM
SiteManagr - A simple open source CMS - by El Forum - 07-21-2010, 11:16 AM
SiteManagr - A simple open source CMS - by El Forum - 08-21-2010, 08:59 AM
SiteManagr - A simple open source CMS - by El Forum - 08-25-2010, 11:25 AM
SiteManagr - A simple open source CMS - by El Forum - 09-25-2010, 08:11 AM
SiteManagr - A simple open source CMS - by El Forum - 09-30-2010, 04:00 AM
SiteManagr - A simple open source CMS - by El Forum - 09-30-2010, 03:25 PM
SiteManagr - A simple open source CMS - by El Forum - 10-01-2010, 02:00 AM
SiteManagr - A simple open source CMS - by El Forum - 10-28-2010, 07:05 AM
SiteManagr - A simple open source CMS - by El Forum - 07-29-2011, 09:16 PM



Theme © iAndrew 2016 - Forum software by © MyBB