Allow ID's > 99999 for redirects.
| | |
| | | } |
| | | |
| | | if(!preg_match("/^[a-z]{2,20}$/i", $mod)) die('module name contains unallowed chars.'); |
| | | if($redirect != '' && !preg_match("/^[a-z0-9]+\/[a-z0-9_\.\-]+\?id=[0-9]{1,5}$/i", $redirect)) die('redirect contains unallowed chars.'); |
| | | if($redirect != '' && !preg_match("/^[a-z0-9]+\/[a-z0-9_\.\-]+\?id=[0-9]{1,7}$/i", $redirect)) die('redirect contains unallowed chars.'); |
| | | |
| | | //* Check if user may use the module. |
| | | $user_modules = explode(",", $_SESSION["s"]["user"]["modules"]); |