Direct registration added, typo fixed, admin session on missing/failed login fixed...

[mailer.git] / inc / modules / guest / action-admin.php

diff --git a/inc/modules/guest/action-admin.php b/inc/modules/guest/action-admin.php
index 68567e02b2f5be23a2f333a728dc21ddd02910bc..17443554f4f59269f406dc7100297b9cd4a13742 100644 (file)
--- a/inc/modules/guest/action-admin.php
+++ b/inc/modules/guest/action-admin.php
@@ -39,7 +39,7 @@ if (!defined('__SECURITY')) {
 
 if (GET_ACTION("guest", $GLOBALS['what']) == "admin") {
        // Only when one admin link is clicked...
-       $INC = sprintf("%sinc/modules/guest/what-%s.php", PATH, $GLOBALS['what']);
+       $INC = sprintf("%sinc/modules/guest/what-%s.php", PATH, SQL_ESCAPE($GLOBALS['what']));
        if (FILE_READABLE($INC)) {
                // Ok, we finally load the guest action module
                include($INC);