diff --git a/www/application/controllers/Plb.php b/www/application/controllers/Plb.php index 41a0dccb..fcbe3691 100644 --- a/www/application/controllers/Plb.php +++ b/www/application/controllers/Plb.php @@ -10,7 +10,15 @@ class Plb extends WRB_Controller { public function viewjob() { $offerCode = ($this->uri->segment(3)) ? $this->uri->segment(3) : 0; - $this->jobViewPage($offerCode); + + if ( strlen($offerCode) == 10 && !preg_match('/'.preg_quote('^\'£$%^&*()}{@#~?><,@|-=-_+-¬', '/').'/', $offerCode) ) + { + $this->jobViewPage($offerCode); + } + else{ + redirect('/login'); + } + } private function jobViewPage($offerCode) { @@ -32,7 +40,6 @@ class Plb extends WRB_Controller { } $myTable .=""; - // $this->table->set_heading('Added/Expire', 'Title/Recipient', 'Status', ''); $data['market_table'] = $myTable; // $this->table->generate($query); // $offer_found = true; } else { @@ -72,7 +79,7 @@ class Plb extends WRB_Controller { . "
-
-
-
-
-