Fix RVE-2023-6 (validate module_srl when uploading/deleting)

2026-04-20 10:52:14 +09:00 · 2023-11-02 13:19:41 +09:00 · 2023-11-02 13:19:41 +09:00 · bffa50dd15
commit bffa50dd15
parent e7eadcc6f1
3 changed files with 28 additions and 16 deletions
--- a/modules/editor/editor.controller.php
+++ b/modules/editor/editor.controller.php
@ -328,11 +328,10 @@ class EditorController extends Editor
 		$editor_sequence = Context::get('editor_sequence');
 		$primary_key = Context::get('primary_key');
 		$oEditorModel = getModel('editor');
-		$oFileController = getController('file');

 		$saved_doc = $oEditorModel->getSavedDoc(null);

-		$oFileController->setUploadInfo($editor_sequence, $saved_doc->document_srl);
+		FileController::setUploadInfo($editor_sequence, $saved_doc->document_srl, intval($saved_doc->module_srl));
 		$vars = $this->getVariables();
 		$this->add("editor_sequence", $editor_sequence);
 		$this->add("key", $primary_key);