diff --git a/app/Http/Controllers/MailController.php b/app/Http/Controllers/MailController.php index e1bbf864d97f1d3b619f35bd4e5e9f21f2a0f385..4bc0844c984003af577af32a5d3f3d5c1324e9b2 100644 --- a/app/Http/Controllers/MailController.php +++ b/app/Http/Controllers/MailController.php @@ -67,6 +67,12 @@ class MailController extends Controller $messageToUser = ""; $messageType = ""; # [success|error] + #Sicherheitsüberprüfung (Wir wurden in letzter Zeit ziemlich mit Mails zugespammt + $hash = md5(date('Y') . date('m') . date('d')); + if ($request->input('dt') !== $hash) { + return redirect(url('spende')); + } + # Folgende Felder werden vom Spendenformular als Input übergeben: # Name # Telefon diff --git a/resources/views/spende/spende.blade.php b/resources/views/spende/spende.blade.php index 7d99121f38e772cba4b46087496590fc4d4eeb41..a97f59e453f1be3b8d4632531aa15af064e27a6a 100644 --- a/resources/views/spende/spende.blade.php +++ b/resources/views/spende/spende.blade.php @@ -42,7 +42,7 @@

{!! trans('spenden.lastschrift.1') !!}

{!! trans('spenden.lastschrift.2') !!}

- {{ csrf_field() }} +
diff --git a/resources/views/spende/spendenaufruf.blade.php b/resources/views/spende/spendenaufruf.blade.php index ee62aedd511323e954daedf26bfd58b6a0d1d23d..70b68d2e6748e40dcdef9778c8c02dcb826a8bf0 100644 --- a/resources/views/spende/spendenaufruf.blade.php +++ b/resources/views/spende/spendenaufruf.blade.php @@ -90,7 +90,7 @@ das MetaGer-Team im SUMA-EV

{{ trans('spenden.lastschrift.1') }}

{{ trans('spenden.lastschrift.2') }}

- {{ csrf_field() }} +