From 70546feb1e2fc945dc42fb6852f9fdaef8118ad9 Mon Sep 17 00:00:00 2001 From: Roman Kelesidis Date: Wed, 24 Jan 2024 00:36:55 +0700 Subject: [PATCH] Update topic_watch.php --- library/includes/ucp/topic_watch.php | 10 ++++++---- 1 file changed, 6 insertions(+), 4 deletions(-) diff --git a/library/includes/ucp/topic_watch.php b/library/includes/ucp/topic_watch.php index fec1ca94..997754df 100644 --- a/library/includes/ucp/topic_watch.php +++ b/library/includes/ucp/topic_watch.php @@ -18,12 +18,14 @@ $page_cfg['include_bbcode_js'] = true; $tracking_topics = get_tracks('topic'); $user_id = $userdata['user_id']; -if (isset($_GET['uid'])) -{ - if ($userdata['user_id'] == $_GET['uid'] || IS_ADMIN) - { +if (isset($_GET['uid']) && get_username($_GET['uid'])) { + if ($_GET['uid'] == $userdata['user_id'] || IS_ADMIN) { $user_id = DB()->escape($_GET['uid']); + } else { + bb_die($lang['NOT_AUTHORISED']); } +} else { + bb_die($lang['USER_NOT_EXIST']); } $start = isset($_GET['start']) ? abs(intval($_GET['start'])) : 0; $per_page = $bb_cfg['topics_per_page'];