X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;ds=sidebyside;f=inc%2Fmodules%2Fadmin%2Faction-;h=b376444c6890eb72e1e6e615d25832bffcf86bf0;hb=f9a9c09e1ae257449bfd98f8854e321efba1dc3c;hp=4f657c694043d011966dec2ebe001307d143390c;hpb=c45b1827a16928c65ecc1aea6a9d7a504c4874d4;p=mailer.git

diff --git a/inc/modules/admin/action- b/inc/modules/admin/action-
index 4f657c6940..b376444c68 100644
--- a/inc/modules/admin/action-
+++ b/inc/modules/admin/action-
@@ -32,17 +32,17 @@
  ************************************************************************/
 
 // Some security stuff...
-if ((ereg(basename(__FILE__), $_SERVER['PHP_SELF'])) || (!IS_ADMIN())) {
+if ((!defined('__SECURITY')) || (!IS_ADMIN())) {
 	$INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
 	require($INC);
 }
 
 // Add description as navigation point
-ADD_DESCR("admin", basename(__FILE__));
+ADD_DESCR("admin", __FILE__);
 
 // Load the include file
-$INC = sprintf("%sinc/modules/admin/what-%s.php", PATH, $GLOBALS['what']);
-if (file_exists($INC)) {
+$INC = sprintf("%sinc/modules/admin/what-%s.php", PATH, SQL_ESCAPE($GLOBALS['what']));
+if (FILE_READABLE($INC)) { 
 	// Ok, we finally load the admin action module
 	include($INC);
 } else {