From 7c3fab8cbda6bbc07786d8e57dc4d197ce3c4a34 Mon Sep 17 00:00:00 2001
From: dignajar <dignajar@gmail.com>
Date: Sun, 25 Sep 2016 23:57:11 -0300
Subject: [PATCH] Security fixes

---
 bl-kernel/js/bludit-cover-image.js | 2 +-
 bl-kernel/js/bludit-images-v8.js   | 2 +-
 bl-kernel/js/bludit-menu-v8.js     | 2 +-
 bl-kernel/js/functions.php         | 8 +++++---
 4 files changed, 8 insertions(+), 6 deletions(-)

diff --git a/bl-kernel/js/bludit-cover-image.js b/bl-kernel/js/bludit-cover-image.js
index fef06ebc..eddee0d3 100644
--- a/bl-kernel/js/bludit-cover-image.js
+++ b/bl-kernel/js/bludit-cover-image.js
@@ -56,7 +56,7 @@ $(document).ready(function() {
 		type: "json",
 		action: HTML_PATH_ADMIN_ROOT+"ajax/uploader",
 		allow : "*.(jpg|jpeg|gif|png)",
-		params: {"type":"cover-image"},
+		params: {"tokenCSRF":tokenCSRF, "type":"cover-image"},
 
 		loadstart: function() {
 			$("#cover-image-progressbar").find(".uk-progress-bar").css("width", "0%").text("0%");
diff --git a/bl-kernel/js/bludit-images-v8.js b/bl-kernel/js/bludit-images-v8.js
index a6b9f9ec..8c2fbcfd 100644
--- a/bl-kernel/js/bludit-images-v8.js
+++ b/bl-kernel/js/bludit-images-v8.js
@@ -31,7 +31,7 @@ $(document).ready(function() {
 		type: "json",
 		action: HTML_PATH_ADMIN_ROOT+"ajax/uploader",
 		allow : "*.(jpg|jpeg|gif|png)",
-		params: {"type":"bludit-images-v8"},
+		params: {"tokenCSRF":tokenCSRF, "type":"bludit-images-v8"},
 
 		loadstart: function() {
 			$("#bludit-images-v8-progressbar").find(".uk-progress-bar").css("width", "0%").text("0%");
diff --git a/bl-kernel/js/bludit-menu-v8.js b/bl-kernel/js/bludit-menu-v8.js
index 5f9cac86..211b73ff 100644
--- a/bl-kernel/js/bludit-menu-v8.js
+++ b/bl-kernel/js/bludit-menu-v8.js
@@ -126,7 +126,7 @@ $(document).ready(function() {
 
 		ajaxRequest = $.ajax({
 			type: "POST",
-			data:{ filename: filenameSelected },
+			data:{ tokenCSRF: tokenCSRF, filename: filenameSelected },
 			url: "<?php echo HTML_PATH_ADMIN_ROOT.'ajax/delete-file' ?>"
 		});
 
diff --git a/bl-kernel/js/functions.php b/bl-kernel/js/functions.php
index 11ab0545..0e340fbc 100644
--- a/bl-kernel/js/functions.php
+++ b/bl-kernel/js/functions.php
@@ -9,6 +9,8 @@ echo 'var HTML_PATH_UPLOADS = "'.HTML_PATH_UPLOADS.'";'.PHP_EOL;
 echo 'var HTML_PATH_UPLOADS_THUMBNAILS = "'.HTML_PATH_UPLOADS_THUMBNAILS.'";'.PHP_EOL;
 echo 'var NO_PARENT_CHAR = "'.NO_PARENT_CHAR.'";'.PHP_EOL;
 
+echo 'var tokenCSRF = "'.$Security->getTokenCSRF().'";'.PHP_EOL;
+
 echo '</script>';
 
 ?>
@@ -40,7 +42,7 @@ function checkSlug(type, text, parentPage, key, writeResponse)
     {
         ajaxRequest = $.ajax({
             type: "POST",
-            data:{ type: "page", text: text, parent: parentPage, key: key },
+            data:{ tokenCSRF: tokenCSRF, type: "page", text: text, parent: parentPage, key: key},
             url: "<?php echo HTML_PATH_ADMIN_ROOT.'ajax/slug' ?>"
         });
     }
@@ -48,7 +50,7 @@ function checkSlug(type, text, parentPage, key, writeResponse)
     {
         ajaxRequest = $.ajax({
             type: "POST",
-            data:{ type: "post", text: text, key: key },
+            data:{ tokenCSRF: tokenCSRF, type: "post", text: text, key: key },
             url: "<?php echo HTML_PATH_ADMIN_ROOT.'ajax/slug' ?>"
         });
     }
@@ -71,4 +73,4 @@ function checkSlug(type, text, parentPage, key, writeResponse)
     });
 }
 
-</script>
+</script>
\ No newline at end of file