diff options
| author | David Rothstein <drothstein@gmail.com> | 2013-11-20 15:45:59 -0500 |
|---|---|---|
| committer | David Rothstein <drothstein@gmail.com> | 2013-11-20 15:45:59 -0500 |
| commit | 782d1155c62c0a879bf587c7e40c3a13bcf6879c (patch) | |
| tree | 380060c81a7ebd76870cfd7fb566933b3a7c6efd /update.php | |
| parent | bf704d6ffe55d66a440a55a9d43e8846d46d2440 (diff) | |
| download | brdo-782d1155c62c0a879bf587c7e40c3a13bcf6879c.tar.gz brdo-782d1155c62c0a879bf587c7e40c3a13bcf6879c.tar.bz2 | |
Drupal 7.24
Diffstat (limited to 'update.php')
| -rw-r--r-- | update.php | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/update.php b/update.php index 331e6324e..c3d404547 100644 --- a/update.php +++ b/update.php @@ -467,13 +467,13 @@ if (update_access_allowed()) { // update.php ops. case 'selection': - if (isset($_GET['token']) && $_GET['token'] == drupal_get_token('update')) { + if (isset($_GET['token']) && drupal_valid_token($_GET['token'], 'update')) { $output = update_selection_page(); break; } case 'Apply pending updates': - if (isset($_GET['token']) && $_GET['token'] == drupal_get_token('update')) { + if (isset($_GET['token']) && drupal_valid_token($_GET['token'], 'update')) { // Generate absolute URLs for the batch processing (using $base_root), // since the batch API will pass them to url() which does not handle // update.php correctly by default. |