From a2c52bd237b8aeb4dba05d51c7f6f658dea2aed5 Mon Sep 17 00:00:00 2001
From: soif <wxopwx@gmail.com>
Date: Mon, 30 Jul 2012 19:52:35 +0200
Subject: [PATCH] missing CSRF token in form ( fix can't manage-faq)

---
 include/staff/faq-view.inc.php | 1 +
 1 file changed, 1 insertion(+)

diff --git a/include/staff/faq-view.inc.php b/include/staff/faq-view.inc.php
index cdbb266d1..ee7d743e4 100644
--- a/include/staff/faq-view.inc.php
+++ b/include/staff/faq-view.inc.php
@@ -40,6 +40,7 @@ if($thisstaff->canManageFAQ()) {
     ?>
    <div>
     <form action="faq.php?id=<?php echo  $faq->getId(); ?>" method="post">
+	 <?php csrf_token(); ?>
         <input type="hidden" name="id" value="<?php echo  $faq->getId(); ?>">
         <input type="hidden" name="do" value="manage-faq">
         <div>
-- 
GitLab