Update of /cvsroot/php-blog/serendipity/include/admin
In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv18559/include/admin
Modified Files:
images.inc.php
Log Message:
forbid uploading of active content files
Index: images.inc.php
===================================================================
RCS file: /cvsroot/php-blog/serendipity/include/admin/images.inc.php,v
retrieving revision 1.9
retrieving revision 1.10
diff -u -d -r1.9 -r1.10
--- images.inc.php 15 Dec 2004 19:58:05 -0000 1.9
+++ images.inc.php 10 Jan 2005 16:01:47 -0000 1.10
@@ -118,6 +118,11 @@
$tfile = basename($serendipity['POST']['imageurl']);
}
+ if ($serendipity['serendipityUserlevel'] < USERLEVEL_ADMIN && preg_match('@\.(php[34]?|[ps]html?)$@i', $tfile)) {
+ printf(ERROR_FILE_FORBIDDEN, $tfile);
+ break;
+ }
+
serendipity_uploadSecure($tfile);
serendipity_uploadSecure($serendipity['POST']['target_directory'], true);
$target = $serendipity['serendipityPath'] . $serendipity['uploadPath'] . $serendipity['POST']['target_directory'] . $tfile;
@@ -152,6 +157,11 @@
$tfile = $_FILES['userfile']['name'];
}
+ if ($serendipity['serendipityUserlevel'] < USERLEVEL_ADMIN && preg_match('@\.(php[34]?|[ps]html?)$@i', $tfile)) {
+ printf(ERROR_FILE_FORBIDDEN, $tfile);
+ break;
+ }
+
serendipity_uploadSecure($tfile);
serendipity_uploadSecure($serendipity['POST']['target_directory'], true);
$target = $serendipity['serendipityPath'] . $serendipity['uploadPath'] . $serendipity['POST']['target_directory'] . $tfile;
|
