In-Reply-To: <[EMAIL PROTECTED]> To repair Bug to edit the file admin.php and to add after the line:
$IN['AD_SESS'] = $HTTP_POST_VARS['adsess'] ? $HTTP_POST_VARS['adsess'] :
$HTTP_GET_VARS['adsess'];
To add this :
if (isset($IN['AD_SESS'])) {
$IN['AD_SESS'] = htmlspecialchars($IN['AD_SESS']);
}
