From 53fa3d375b759ed123eddf47f77e2ec3fda3d81d Mon Sep 17 00:00:00 2001
From: Chad Little <clittle@users.sourceforge.net>
Date: Tue, 25 Oct 2005 02:47:30 +0000
Subject: Cookie vulnerability fixed.

---
 index.php | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

(limited to 'index.php')

diff --git a/index.php b/index.php
index 9310f4e..51a222c 100644
--- a/index.php
+++ b/index.php
@@ -10,7 +10,12 @@ if ($printview_default == 'yes') {
 	$printview = $default_view;
 	$default_view = "print.php";
 } else {
-	$default_view = "$default_view" . ".php";
+	$check = array ('day', 'week', 'month');
+	if (in_array($default_view, $check)) {
+		$default_view = $default_view . '.php';
+	} else {
+		die;
+	}
 }
 /*header("Location: $default_view");*/
 
-- 
cgit v1.2.3