[Phpcompta-dev] r4599 - phpcompta/trunk/include

[phpcompta-dev]

Author: danydb
Date: 2011-12-11 23:15:10 +0100 (Sun, 11 Dec 2011)
New Revision: 4599

Modified:
   phpcompta/trunk/include/compta_ach.inc.php
   phpcompta/trunk/include/compta_fin.inc.php
   phpcompta/trunk/include/compta_ven.inc.php
Log:

Security ; bug can't access VEN & ACH when global admin


Modified: phpcompta/trunk/include/compta_ach.inc.php
===================================================================
--- phpcompta/trunk/include/compta_ach.inc.php  2011-12-11 20:54:08 UTC (rev 
4598)
+++ phpcompta/trunk/include/compta_ach.inc.php  2011-12-11 22:15:10 UTC (rev 
4599)
@@ -164,7 +164,7 @@
 if (!isset($_REQUEST ['p_jrn']))
 {
        $def_ledger = $Ledger->get_first('ach',2);
-       if ( empty ($first_ledger))
+       if ( empty ($def_ledger))
        {
                exit('Pas de journal disponible');
        }

Modified: phpcompta/trunk/include/compta_fin.inc.php
===================================================================
--- phpcompta/trunk/include/compta_fin.inc.php  2011-12-11 20:54:08 UTC (rev 
4598)
+++ phpcompta/trunk/include/compta_fin.inc.php  2011-12-11 22:15:10 UTC (rev 
4599)
@@ -44,6 +44,10 @@
 else
 {
        $def_ledger=$Ledger->get_first('fin');
+       if ( empty ($def_ledger))
+       {
+               exit('Pas de journal disponible');
+       }
        $Ledger->id=$def_ledger['jrn_def_id'];
 }
 $jrn_priv=$g_user->get_ledger_access($Ledger->id);

Modified: phpcompta/trunk/include/compta_ven.inc.php
===================================================================
--- phpcompta/trunk/include/compta_ven.inc.php  2011-12-11 20:54:08 UTC (rev 
4598)
+++ phpcompta/trunk/include/compta_ven.inc.php  2011-12-11 22:15:10 UTC (rev 
4599)
@@ -183,7 +183,7 @@
     if ( !isset($_REQUEST ['p_jrn']) )
     {
         $def_ledger=$Ledger->get_first('ven',2);
-               if (empty($first_ledger))
+               if (empty($def_ledger))
        {
                exit('Pas de journal disponible');
        }