Menu
▾
▴
[Phpbb-checkins] CVS: phpBB2/includes usercp_avatar.php,1.8.2.1,1.8.2.2
|
From: Jonathan H. <the...@us...> - 2002-04-29 14:45:11
|
Update of /cvsroot/phpbb/phpBB2/includes
In directory usw-pr-cvs1:/tmp/cvs-serv25196
Modified Files:
Tag: phpBB-2_0_0
usercp_avatar.php
Log Message:
Fix for possible security issues..
Index: usercp_avatar.php
===================================================================
RCS file: /cvsroot/phpbb/phpBB2/includes/usercp_avatar.php,v
retrieving revision 1.8.2.1
retrieving revision 1.8.2.2
diff -C2 -r1.8.2.1 -r1.8.2.2
*** usercp_avatar.php 7 Apr 2002 19:26:07 -0000 1.8.2.1
--- usercp_avatar.php 29 Apr 2002 14:45:07 -0000 1.8.2.2
***************
*** 75,79 ****
}
! if ( !preg_match('#^(http:\/\/[a-z0-9\-]+?\.([a-z0-9\-]+\.)*[a-z]+(:[0-9]+)*\/.*?\.(gif|jpg|jpeg|png)$)#is', $avatar_filename) )
{
$error = true;
--- 75,79 ----
}
! if ( !preg_match('#^(http:\/\/[a-z0-9\-]+?\.([a-z0-9\-]+\.)*[a-z]+(:[0-9]+)*\/[^\"]*?\.(gif|jpg|jpeg|png)$)#is', $avatar_filename) )
{
$error = true;
***************
*** 334,336 ****
}
! ?>
\ No newline at end of file
--- 334,336 ----
}
! ?>
|
