diff options
Diffstat (limited to 'core/helpers/access.php')
| -rw-r--r-- | core/helpers/access.php | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/core/helpers/access.php b/core/helpers/access.php index c6ee1fcc..d05f3df0 100644 --- a/core/helpers/access.php +++ b/core/helpers/access.php @@ -305,7 +305,8 @@ class access_Core { * Verify our Cross Site Request Forgery token is valid, else throw an exception. */ public static function verify_csrf() { - if (Input::instance()->post("csrf") !== Session::instance()->get("csrf")) { + $input = Input::instance(); + if ($input->post("csrf", $input->get("csrf", null)) !== Session::instance()->get("csrf")) { access::forbidden(); } } |