Fixes for stripped HTML tags, and false warnings in debug log

[mailer.git] / inc / modules / admin / action-admins.php

diff --git a/inc/modules/admin/action-admins.php b/inc/modules/admin/action-admins.php
index 9e4c6b28ee5b2db910b592cef6e49ff49444f71f..2187e4b3b97e6c18989293c4d2610f63a7b5acf4 100644 (file)
--- a/inc/modules/admin/action-admins.php
+++ b/inc/modules/admin/action-admins.php
@@ -32,21 +32,22 @@
  ************************************************************************/
 
 // Some security stuff...
-if ((ereg(basename(__FILE__), $_SERVER['PHP_SELF'])) || (!IS_ADMIN())) {
+if ((!defined('__SECURITY')) || (!IS_ADMIN())) {
        $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
        require($INC);
 }
 
 // Add description as navigation point
-ADD_DESCR("admin", basename(__FILE__));
+ADD_DESCR("admin", __FILE__);
 
 // Load the include file
-$INC = sprintf("%sinc/modules/admin/what-%s.php", PATH, $GLOBALS['what']);
-if ((file_exists($INC)) && (is_readable($INC))) {
+$INC = sprintf("inc/modules/admin/what-%s.php", SQL_ESCAPE($GLOBALS['what']));
+if (INCLUDE_READABLE($INC)) {
        // Ok, we finally load the admin action module
-       include($INC);
+       LOAD_INC($INC);
 } else {
-       ADD_FATAL(ADMIN_404_ACTION_1.$GLOBALS['what'].ADMIN_404_ACTION_2);
+       addFatalMessage(getMessage('ADMIN_ACTION_404'), $GLOBALS['what']);
 }
+
 //
 ?>