From e49069a9c6f05e1e0534ae7f992186bf928e0e4b Mon Sep 17 00:00:00 2001 From: Ferywir <65760459+Ferywir@users.noreply.github.com> Date: Tue, 23 Jun 2026 05:54:03 +0200 Subject: [PATCH] fix(admin): verify CSRF token in player-management admin Mods [#139] (#256) --- Admin/Templates/addUsers.tpl | 1 + Admin/Templates/editAccess.tpl | 1 + Admin/Templates/editAdditional.tpl | 1 + Admin/Templates/editHero.tpl | 1 + Admin/Templates/editPassword.tpl | 1 + Admin/Templates/editProtection.tpl | 1 + Admin/Templates/editSitter.tpl | 1 + Admin/Templates/editUser.tpl | 2 ++ GameEngine/Admin/Mods/addUsers.php | 5 +++++ GameEngine/Admin/Mods/additional.php | 5 +++++ GameEngine/Admin/Mods/editAccess.php | 6 ++++++ GameEngine/Admin/Mods/editHero.php | 5 +++++ GameEngine/Admin/Mods/editPassword.php | 5 +++++ GameEngine/Admin/Mods/editProtection.php | 5 +++++ GameEngine/Admin/Mods/editSitter.php | 5 +++++ GameEngine/Admin/Mods/editUser.php | 5 +++++ GameEngine/Admin/Mods/editUsername.php | 5 +++++ 17 files changed, 55 insertions(+) diff --git a/Admin/Templates/addUsers.tpl b/Admin/Templates/addUsers.tpl index 0d98f74e..01a81984 100644 --- a/Admin/Templates/addUsers.tpl +++ b/Admin/Templates/addUsers.tpl @@ -103,6 +103,7 @@ elseif(isset($_GET['g']) && $_GET['g']=='OK'){