OpenStreetBrowser
/
OpenStreetBrowser
2
0
Fork 0
Code Issues 3 Pull Requests Releases Wiki Activity
Browse Source

RepositoryDir: deny access for illegal paths

master
Stephan Bösch-Plepelits 6 years ago
parent
eb19615321
commit
375eba5235
1 changed files with 12 additions and 0 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 12
      src/RepositoryDir.php

12
src/RepositoryDir.php
View File

@ -43,6 +43,10 @@ class RepositoryDir extends RepositoryBase {
}
function scandir($path="") {
if (substr($path, 0, 1) === '.' || preg_match("/\/\./", $path)) {
return false;
}
if (!$this->access($path)) {
return false;
}
@ -51,6 +55,10 @@ class RepositoryDir extends RepositoryBase {
}
function file_get_contents ($file) {
if (substr($file, 0, 1) === '.' || preg_match("/\/\./", $file)) {
return null;
}
if (!$this->access($file)) {
return false;
}
@ -59,6 +67,10 @@ class RepositoryDir extends RepositoryBase {
}
function file_put_contents ($file, $content) {
if (substr($file, 0, 1) === '.' || preg_match("/\/\./", $file)) {
return false;
}
if (!$this->access($file)) {
return false;
}

Write Preview
Loading…
Cancel
Save