Clean d'appels de $_REQUEST

bureau/admin/adm_dodefquotas.php

@@ -72,7 +72,7 @@ if($action == "add") {
       <input type="hidden" name="type" value="<?php echo $type ?>" />
       <input type="hidden" name="del_confirm" value="y" />
       <p class="error"><?php __("WARNING : Confirm the deletion of the quota"); ?></p>
-      <p><?php echo $_POST["type"]; ?></p>
+      <p><?php echo $type; ?></p>
       <blockquote>
         <input type="submit" class="inb" name="confirm" value="<?php __("Yes"); ?>" />&nbsp;&nbsp;
         <input type="button" class="inb" name="cancel" value="<?php __("No"); ?>" onclick="document.location='adm_defquotas.php';" />

bureau/class/m_mem.php

@@ -120,9 +120,10 @@ class m_mem {
     /* Close sessions that are more than 2 days old. */
     $db->query("DELETE FROM sessions WHERE DATE_ADD(ts,INTERVAL 2 DAY)<NOW();");
     /* Open the session : */
-    $_REQUEST["session"]=md5(uniqid(mt_rand()));
-    $db->query("insert into sessions (sid,ip,uid) values ('".$_REQUEST["session"]."',$ip,'$cuid');");
-    setcookie("session",$_REQUEST["session"],0,"/");
+    $sess=md5(uniqid(mt_rand()));
+    $_REQUEST["session"]=$sess;
+    $db->query("insert into sessions (sid,ip,uid) values ('$sess',$ip,'$cuid');");
+    setcookie("session",$sess,0,"/");
     $err->error=0;
     /* Fill in $local */
     $db->query("SELECT * FROM local WHERE uid='$cuid';");
@@ -154,9 +155,10 @@ class m_mem {
     $this->user=$db->Record;
     $cuid=$db->f("uid");
     $ip=getenv("REMOTE_ADDR");
-    $_REQUEST["session"]=md5(uniqid(mt_rand()));
-    $db->query("insert into sessions (sid,ip,uid) values ('".$_REQUEST["session"]."','$ip','$cuid');");
-    setcookie("session",$_REQUEST["session"],0,"/");
+    $sess=md5(uniqid(mt_rand()));
+    $_REQUEST["session"]=$sess;
+    $db->query("insert into sessions (sid,ip,uid) values ('$sess','$ip','$cuid');");
+    setcookie("session",$sess,0,"/");
     $err->error=0;
     /* Fill in $local */
     $db->query("SELECT * FROM local WHERE uid='$cuid';");