Fix load admin panels extra data - refs BT#9325

11 years ago · 32b72aff69
parent b8ecdd73bf
commit 32b72aff69
1 changed files with 4 additions and 0 deletions
--- a/main/inc/ajax/admin.ajax.php
+++ b/main/inc/ajax/admin.ajax.php
@ -97,6 +97,10 @@ switch ($action) {
            $newUrlDir = api_get_path(SYS_PATH) . "home/admin/";
        }

+        if (!file_exists($newUrlDir)) {
+            die;
+        }
+
        if (!Security::check_abs_path("{$newUrlDir}{$blockName}_extra.html", $newUrlDir)) {
            die;
        }