fanbinit/rhymix
1
0
Fork 0
mirror of https://github.com/Lastorder-DC/rhymix.git synced 2026-01-08 03:01:43 +09:00
Code Issues Projects Releases Packages Wiki Activity

Don't allow uploading .php or .js files using the filebox #1796

Browse source
This commit is contained in:
Kijin Sung 2021-10-19 21:39:13 +09:00
parent 3467bf0ae3
commit 4fd1804d27
3 changed files with 7 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

1
modules/module/lang/en.php
View file

@ -131,3 +131,4 @@ $lang->cmd_set_multilingual_text = 'Set multilingual text';
$lang->cmd_remove_multilingual_text = 'Remove multilingual text'; $lang->cmd_remove_multilingual_text = 'Remove multilingual text';
$lang->use_site_default_skin = 'Use site default skin'; $lang->use_site_default_skin = 'Use site default skin';
$lang->use_responsive_pc_skin = 'Use responsive PC skin'; $lang->use_responsive_pc_skin = 'Use responsive PC skin';
$lang->msg_filebox_invalid_extension = 'This file format (%s) cannot be uploaded using the Filebox.';

1
modules/module/lang/ko.php
View file

@ -129,3 +129,4 @@ $lang->cmd_set_multilingual_text = '다국어 텍스트 설정';
$lang->cmd_remove_multilingual_text = '다국어 텍스트 해제'; $lang->cmd_remove_multilingual_text = '다국어 텍스트 해제';
$lang->use_site_default_skin = '사이트 기본 스킨 사용'; $lang->use_site_default_skin = '사이트 기본 스킨 사용';
$lang->use_responsive_pc_skin = 'PC와 동일한 반응형 스킨 사용'; $lang->use_responsive_pc_skin = 'PC와 동일한 반응형 스킨 사용';
$lang->msg_filebox_invalid_extension = '파일박스에 업로드할 수 없는 유형(%s)의 파일입니다.';

4
modules/module/module.controller.php
View file

@ -1070,6 +1070,10 @@ class moduleController extends module
throw new Rhymix\Framework\Exception('msg_error_occured'); throw new Rhymix\Framework\Exception('msg_error_occured');
} }
} }
if (in_array($ext, ['php', 'js']))
{
throw new Rhymix\Framework\Exception(sprintf(lang('msg_filebox_invalid_extension'), $ext));
}
$vars->member_srl = $logged_info->member_srl; $vars->member_srl = $logged_info->member_srl;