ricardogj08/nabu
1
0
Fork 0
Code Issues Pull requests Projects Releases Activity

[Corrección] considera cuando el token no existe en un formulario

Browse source
This commit is contained in:
Ricardo García Jiménez 2021-09-24 19:03:45 -05:00
parent d8494912dd
commit 970878e8be
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
libs/csrf.php
View file

@ -32,7 +32,7 @@ class csrf {
// Valida si un token no está expirado y es igual al generado.
public static function validate($token2) {
if (empty($_SESSION['csrf'])) {
if (empty($_SESSION['csrf']) || empty($token2)) {
self::errors('Token inválido');
}