diff options
| author | Christian Weiske <cweiske@cweiske.de> | 2019-01-08 20:35:34 +0100 |
|---|---|---|
| committer | Christian Weiske <cweiske@cweiske.de> | 2019-01-08 20:35:51 +0100 |
| commit | ea7a3af16218cfba55333e15d0eec856d595d59a (patch) | |
| tree | 2be0a9b541042a8a8deb6dd61a88a9fc0c4027fe | |
| parent | 1979dce952f8274c18ed7f662318f27aadf6c01a (diff) | |
| download | phinde-ea7a3af16218cfba55333e15d0eec856d595d59a.tar.gz phinde-ea7a3af16218cfba55333e15d0eec856d595d59a.zip | |
Do not allow pages > 100
| -rw-r--r-- | www/index.php | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/www/index.php b/www/index.php index da7b27c..7c4904b 100644 --- a/www/index.php +++ b/www/index.php @@ -15,6 +15,12 @@ if (isset($_GET['page'])) { } //PEAR Pager begins at 1 $page = (int)$_GET['page'] - 1; + + if ($page >= 100) { + //Elasticsearch by default only allows 100 pages + // we do not want exceptions in our logs + throw new Exception_Input('List page is too large'); + } } $perPage = 10;//$GLOBALS['phinde']['perPage']; |