sec(Workflow) validate CSRF on workflow actions

tsolucio · Oct 31, 2021 · dcf503a · dcf503a
1 parent c05cdd5
commit dcf503a
Show file tree

Hide file tree

Showing 4 changed files with 4 additions and 1 deletion.
diff --git a/modules/com_vtiger_workflow/activatedeactivateTask.php b/modules/com_vtiger_workflow/activatedeactivateTask.php
@@ -31,5 +31,6 @@ function activatedeactivateTask($adb, $request) {
 	</script>
 	<?php
 }
+Vtiger_Request::validateRequest();
 activatedeactivateTask($adb, $_REQUEST);
 ?>
diff --git a/modules/com_vtiger_workflow/savetask.php b/modules/com_vtiger_workflow/savetask.php
@@ -102,5 +102,6 @@ function vtSaveTask($adb, $request) {
 	</script>
 	<?php
 }
+Vtiger_Request::validateRequest();
 vtSaveTask($adb, $_REQUEST);
 ?>
diff --git a/modules/com_vtiger_workflow/savetemplate.php b/modules/com_vtiger_workflow/savetemplate.php
@@ -42,5 +42,6 @@ function vtSaveWorkflowTemplate($adb, $request) {
 		<a href="<?php echo $returnUrl?>">Return</a>
 	<?php
 }
+Vtiger_Request::validateRequest();
 vtSaveWorkflowTemplate($adb, $_REQUEST);
 ?>
diff --git a/modules/com_vtiger_workflow/saveworkflow.php b/modules/com_vtiger_workflow/saveworkflow.php
@@ -222,6 +222,6 @@ function vtWorkflowSave($adb, $request) {
 	<a href="<?php echo urldecode($returnUrl)?>">Return</a>
 	<?php
 }
-
+Vtiger_Request::validateRequest();
 vtWorkflowSave($adb, $_REQUEST);
 ?>