From 92b688935da0dc188e7da4ee4c6d8fc6c0cef2d8 Mon Sep 17 00:00:00 2001
From: Philipp Dunkel <philipp@cacert.org>
Date: Sun, 20 Sep 2009 17:32:57 +0000
Subject: [PATCH] http://bugs.cacert.org/view.php?id=608

---
 www/disputes.php | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/www/disputes.php b/www/disputes.php
index e87e5e6..5b78c1e 100644
--- a/www/disputes.php
+++ b/www/disputes.php
@@ -226,6 +226,7 @@
 
 	if($oldid == "1")
 	{
+		csrf_check('emaildispute');
 		$email = trim(mysql_escape_string(stripslashes($_REQUEST['dispute'])));
 		if($email == "")
 		{
@@ -297,6 +298,7 @@
 
 	if($oldid == "2")
 	{
+		csrf_check('domaindispute');
 		$domain = trim(mysql_escape_string(stripslashes($_REQUEST['dispute'])));
 		if($domain == "")
 		{