TravianZ

xinyin025/TravianZ

Fork 0

mirror of https://github.com/Shadowss/TravianZ.git synced 2026-06-28 16:44:24 +00:00

Commit Graph

Author	SHA1	Message	Date
Ferywir	8a3a67d175	fix(admin): verify CSRF token in alliance/medal admin Mods [#139 ] (#261 ) editAli, delAli, medals, delallymedal, delallymedalbyaid, delallymedalbyweek and deletemedalbyweek are POSTed to directly, bypassing admin.php's central csrf_verify(). Add csrf_verify() (after the admin access check, via the shared GameEngine/Admin/csrf.php) and csrf_field() in their forms (playermedals.tpl, editAli.tpl, delAli.tpl, delmedal.tpl, allymedals.tpl, delallymedal.tpl). Co-authored-by: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-23 11:11:32 +03:00
novgorodschi catalin	8c3ab3e5eb	Fix some bugs + added (coded delAli) Fix some bugs + added (coded delAli)	2026-05-25 12:37:33 +03:00
novgorodschi catalin	a4e2c506a8	Redesign Admin Panel Full frontend & backend redesign and refactor	2026-05-25 10:23:39 +03:00

Author

SHA1

Message

Date

Ferywir

8a3a67d175

fix(admin): verify CSRF token in alliance/medal admin Mods [#139 ] (#261 )

editAli, delAli, medals, delallymedal, delallymedalbyaid, delallymedalbyweek
and deletemedalbyweek are POSTed to directly, bypassing admin.php's central
csrf_verify(). Add csrf_verify() (after the admin access check, via the shared
GameEngine/Admin/csrf.php) and csrf_field() in their forms (playermedals.tpl,
editAli.tpl, delAli.tpl, delmedal.tpl, allymedals.tpl, delallymedal.tpl).

Co-authored-by: Claude Opus 4.8 <noreply@anthropic.com>

2026-06-23 11:11:32 +03:00

novgorodschi catalin

8c3ab3e5eb

Fix some bugs + added (coded delAli)

Fix some bugs + added (coded delAli)

2026-05-25 12:37:33 +03:00

novgorodschi catalin

a4e2c506a8

Redesign Admin Panel

Full frontend & backend redesign and refactor

2026-05-25 10:23:39 +03:00

3 Commits