[SECURITY] Untrusted GP data is unserialized in old CSH handling
[Packages/TYPO3.CMS.git] / typo3 / wizard_list.php
index 742260b..7a2dda5 100644 (file)
@@ -87,7 +87,9 @@ class SC_wizard_list {
                        // Set [params][pid]
                if (substr($this->P['params']['pid'], 0, 3) == '###' && substr($this->P['params']['pid'], -3) == '###') {
                        $this->pid = intval($TSconfig['_'.substr($this->P['params']['pid'], 3, -3)]);
-               } else $this->pid = intval($this->P['params']['pid']);
+               } else {
+                       $this->pid = intval($this->P['params']['pid']);
+               }
 
                        // Make redirect:
                        // If pid is blank OR if id is set, then return...