diff options
| author | Lukas Reschke <lukas@statuscode.ch> | 2014-02-18 12:47:05 +0100 |
|---|---|---|
| committer | Lukas Reschke <lukas@statuscode.ch> | 2014-02-18 12:47:05 +0100 |
| commit | 1352c63dca25b04594cbdfeb8c832351997a1d14 (patch) | |
| tree | c9ea1b45e21b4a56cb557866c2374fc84e6e97ad /core/ajax | |
| parent | dc6f1d875d7c6f86b07aba8b6f1119083279cd30 (diff) | |
| download | nextcloud-server-1352c63dca25b04594cbdfeb8c832351997a1d14.tar.gz nextcloud-server-1352c63dca25b04594cbdfeb8c832351997a1d14.zip | |
Check whether the Key is set
Diffstat (limited to 'core/ajax')
| -rw-r--r-- | core/ajax/appconfig.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/core/ajax/appconfig.php b/core/ajax/appconfig.php index 6629d8a664b..1d066d9169a 100644 --- a/core/ajax/appconfig.php +++ b/core/ajax/appconfig.php @@ -15,7 +15,7 @@ $app=OC_App::cleanAppId(isset($_POST['app'])?$_POST['app']:$_GET['app']); // on its own. This should only be possible programmatically. // This change is due the fact that an admin may not be expected // to execute arbitrary code in every environment. -if($app === 'core' && (substr($_POST['key'],0,7) === 'remote_' || substr($_POST['key'],0,7) === 'public_')) { +if($app === 'core' && isset($_POST['key']) &&(substr($_POST['key'],0,7) === 'remote_' || substr($_POST['key'],0,7) === 'public_')) { OC_JSON::error(array('data' => array('message' => 'Unexpected error!'))); return; } |