fanbinit/rhymix
1
0
Fork 0
mirror of https://github.com/Lastorder-DC/rhymix.git synced 2026-01-07 18:51:41 +09:00
Code Issues Projects Releases Packages Wiki Activity

Ensure more consistent operation of security checks

Browse source 
- 수상한 파일이 업로드되었을 때 isSuccessInit = false로 지정
- isSuccessInit = false인 경우 무조건 에러메시지 출력 (xpressengine/xe-core#2304)
- 보안정책 관련 에러메시지는 msg_security_violation으로 통일
This commit is contained in:
Kijin Sung 2018-10-10 16:27:23 +09:00
parent 4dca555392
commit c3f1e24b02
2 changed files with 13 additions and 19 deletions
Download patch file Download diff file Expand all files Collapse all files

1
classes/context/Context.class.php
View file

@ -1263,6 +1263,7 @@ class Context
{
if(!UploadFileFilter::check($tmp_name, $val['name']))
{
self::$_instance->isSuccessInit = false;
unset($_FILES[$key]);
continue;
}