diff options
Diffstat (limited to 'inc')
-rw-r--r-- | inc/db.inc.php | 5 | ||||
-rw-r--r-- | inc/help.inc.php | 5 |
2 files changed, 7 insertions, 3 deletions
diff --git a/inc/db.inc.php b/inc/db.inc.php index ed45f7b..e023c3a 100644 --- a/inc/db.inc.php +++ b/inc/db.inc.php @@ -1,7 +1,10 @@ <?php $SESSION_DIR="/srv/postedit/sessions"; -$json = file_get_contents($SESSION_DIR."/".$_GET["key"]."/data.json"); +$key = $_GET["key"]; +if (preg_match('/^[a-z0-9]{1,4}$/', $key)) { + $json = file_get_contents($SESSION_DIR."/".$key."/data.json"); +} $db = json_decode($json); ?> diff --git a/inc/help.inc.php b/inc/help.inc.php index c29d989..86ddf70 100644 --- a/inc/help.inc.php +++ b/inc/help.inc.php @@ -1,5 +1,6 @@ -<p>Press the 'Next' button to <strong>submit</strong> your post-edit and to request the next segment for post-edition. -In the textual interface, you may just press return when the post-edit is finished (and 'Target' text area is in focus).</p> +<p>Press the 'Next' button to <strong>submit</strong> your translation or post-edit and to request the next segment for post-edition. +<!--In the textual interface, you may just press return when the post-edit is finished (and 'Target' text area is in focus).--> +</p> <p>The session can be paused at any time and continued later -- just press 'Pause'. Note that we are collecting timing information, so pausing your session on inactivity is important for us. You may also just reload this site upon your return and re-request the segment to reset the timer.</p> |