From c19cacb29f263558f052ccd8d78033d63326589e Mon Sep 17 00:00:00 2001 From: Lukas Reschke Date: Tue, 18 Feb 2014 14:12:49 +0100 Subject: [PATCH] Check whether the app is set --- core/ajax/appconfig.php | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/core/ajax/appconfig.php b/core/ajax/appconfig.php index 1d066d9169..05b7572c6d 100644 --- a/core/ajax/appconfig.php +++ b/core/ajax/appconfig.php @@ -9,7 +9,10 @@ OC_Util::checkAdminUser(); OCP\JSON::callCheck(); $action=isset($_POST['action'])?$_POST['action']:$_GET['action']; -$app=OC_App::cleanAppId(isset($_POST['app'])?$_POST['app']:$_GET['app']); + +if(isset($_POST['app']) || isset($_GET['app'])) { + $app=OC_App::cleanAppId(isset($_POST['app'])?$_POST['app']:$_GET['app']); +} // An admin should not be able to add remote and public services // on its own. This should only be possible programmatically.