Skip to content
Snippets Groups Projects
Commit 760cf628 authored by root's avatar root
Browse files

#Fixes::156594583::Chaitanya N::Burp Suite POST request is allowing to create... 

#Fixes::156594583::Chaitanya N::Burp Suite POST request is allowing to create webform without name and for unsupported module issue is fixed
parent 0c4c8699
No related branches found
No related tags found
1 merge request!1160Fixes: Allowing to create webform without name and for unsupported module issue is fixed.
Hide whitespace changes
Inline Side-by-side
pkg/vtiger/modules/Webforms/settings/actions/Save.php
+ 9
1
View file @ 760cf628
......@@ -35,11 +35,19 @@ class Settings_Webforms_Save_Action extends Settings_Vtiger_Index_Action {
}
$fieldsList = $recordModel->getModule()->getFields();
$supportedModules = Settings_Webforms_Module_Model::getSupportedModulesList();
foreach ($fieldsList as $fieldName => $fieldModel) {
$fieldValue = $request->get($fieldName);
if (!$fieldValue) {
$fieldValue = $fieldModel->get('defaultvalue');
}
if($fieldModel->isMandatory() && empty(trim($fieldValue))) {
throw new AppException(vtranslate('LBL_MANDATORY_FIELD_MISSING'));
}else if($fieldName == 'targetmodule' && !array_key_exists($fieldValue,$supportedModules)){
throw new Exception('Target module is not supported to create webform');
}
$recordModel->set($fieldName, $fieldValue);
}
......@@ -61,4 +69,4 @@ class Settings_Webforms_Save_Action extends Settings_Vtiger_Index_Action {
public function validateRequest(Vtiger_Request $request) {
$request->validateWriteAccess();
}
}
\ No newline at end of file
}
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment

Copyright 2023 Vtiger. All rights reserved.