From 1be618bf0470ecd3e14e907c348e37b766f9c26f Mon Sep 17 00:00:00 2001
From: Kestas Kuliukas <kestas.j.k@gmail.com>
Date: Fri, 23 Jul 2021 21:56:56 +0800
Subject: [PATCH] CSRF fix

---
 contactUsDirect.php | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/contactUsDirect.php b/contactUsDirect.php
index 6f6aae166..2819423fa 100644
--- a/contactUsDirect.php
+++ b/contactUsDirect.php
@@ -58,6 +58,8 @@ class GameResultData
 // Get values from posted contact requests. 
 if(isset($_POST['submit'])) 
 {
+    libAuth::formToken_Valid();
+
     $submitted = true;
     if (isset($_POST['issueType']))
     {
@@ -393,6 +395,7 @@ class GameResultData
     print '<div class = "contactUsShow">';
     
     print '<form action="#" method="post">';
+    print libAuth::formTokenHTML();
     print   '<p><strong>What do you need to contact us about?</strong></p>
             Issue with game(s) <input type="radio" value="gameIssue" onclick="javascript:gameIssueCheck();" name="issueType" id="gameIssue" required> 
             </br>Other issue <input type="radio" value="otherIssue" onclick="javascript:gameIssueCheck();" name="issueType" id="otherIssue">';