fanbinit/rhymix
1
0
Fork 0
mirror of https://github.com/Lastorder-DC/rhymix.git synced 2026-01-09 11:44:10 +09:00
Code Issues Projects Releases Packages Wiki Activity
16809 commits 3 branches 212 tags 117 MiB
Commit graph

11 commits

Author SHA1 Message Date
Kijin Sung
cd084d6073 Fix invalid function call 2018-10-18 15:51:44 +09:00
Kijin Sung
e98cf03d95 Move upload file filter to Rhymix Framework and add proper unit tests for SVG-based attacks 2018-10-18 14:34:19 +09:00
Kijin Sung
19331e6746 Additional XSS checks #1088 2018-09-18 13:27:55 +09:00
Kijin Sung
e03ccbd7a9 Also filter XML and HTML file uploads 
- Detect possible XML (including SVG) by actual content, not extension
- Check large files in overlapping chunks to reduce memory usage
- Check XML files for external entities
- Check HTML files for SSI and PHP code
 2018-09-18 02:45:48 +09:00
Kijin Sung
60d390f52e Initial mitigations for #1088 #1089 2018-09-17 00:48:47 +09:00
Kijin Sung
4594c40321 Disable useless UploadFileFilter 2016-03-11 19:55:41 +09:00
bnu
932862be1f #64 서버 내 경로를 절대경로로 변경 2013-11-23 11:59:49 +09:00
khongchi
29a2a99ac6 #53 파일업로드 취약점 방어 기능 disable 2013-11-15 14:00:50 +09:00
akasima
bce0a0b6d4 copyright add to php files 
git-svn-id: http://xe-core.googlecode.com/svn/branches/maserati@13186 201d5d3c-b55e-5fd7-737f-ddc643e51545
 2013-11-08 05:52:51 +00:00
khongchi
e0879ea45c remove debugPrint 
git-svn-id: http://xe-core.googlecode.com/svn/branches/maserati@13184 201d5d3c-b55e-5fd7-737f-ddc643e51545
 2013-11-08 04:27:55 +00:00
khongchi
acd89ccd9a issue 3633, protect from file upload hacking 
git-svn-id: http://xe-core.googlecode.com/svn/branches/maserati@13182 201d5d3c-b55e-5fd7-737f-ddc643e51545
 2013-11-08 03:44:04 +00:00