From a5a8bf0c555d7a881780b3dbcd72c065f6788d23 Mon Sep 17 00:00:00 2001
From: nicod_ <nicod@lerebooteux.fr>
Date: Tue, 6 Jun 2023 15:46:08 +0200
Subject: [PATCH] =?UTF-8?q?V=C3=A9rification=20d'autorisation=20:=20a=20t'?=
 =?UTF-8?q?on=20le=20droit=20de=20modifier=20l'objet=20sur=20lequel=20on?=
 =?UTF-8?q?=20est=20=3F?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 formulaires/editer_block.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/formulaires/editer_block.php b/formulaires/editer_block.php
index 4896f78..860134f 100644
--- a/formulaires/editer_block.php
+++ b/formulaires/editer_block.php
@@ -56,7 +56,7 @@ function formulaires_editer_block_charger_dist($id_block = 'new', $objet = null,
 	} else {
 		$id_blocktype = _request('id_blocktype');
 	}
-	if (!$objet || !(int)$id_objet) {
+	if (!$objet || !(int)$id_objet || !autoriser('modifier', $objet, $id_objet)) {
 		return null;
 	}
 
-- 
GitLab