fanbinit/rhymix
1
0
Fork 0
mirror of https://github.com/Lastorder-DC/rhymix.git synced 2026-01-05 09:41:40 +09:00
Code Issues Projects Releases Packages Wiki Activity

Additional XSS checks #1088

Browse source
This commit is contained in:
Kijin Sung 2018-09-18 13:27:55 +09:00
parent e03ccbd7a9
commit 19331e6746
2 changed files with 12 additions and 11 deletions
Download patch file Download diff file Expand all files Collapse all files

6
classes/security/UploadFileFilter.class.php
View file

@ -67,7 +67,11 @@ class UploadFileFilter
*/
protected static function _checkSVG($fp, $from, $to)
{
if (self::_matchStream('/<script|xlink:href\s*=\s*"(?!data:)/i', $fp, $from, $to))
if (self::_matchStream('/<script|<handler\b|xlink:href\s*=\s*"(?!data:)/i', $fp, $from, $to))
{
return false;
}
if (self::_matchStream('/\b(?:ev:(?:event|listener|observer)|on[a-z]+)\s*=/i', $fp, $from, $to))
{
return false;
}