Browse Source

strip some tags

remotes/r4jeshwar/master v1.5.2
Go Johansson 4 months ago
parent
commit
32cba5812d
  1. 2
      dist.json
  2. 2
      package.json
  3. 2
      static/php/includes/Core.namespace.php
  4. 2
      static/php/includes/Upload.class.php

2
dist.json

@ -3,7 +3,7 @@
"allowErrors": false
},
"dest": "dist",
"pkgVersion": "1.5.1",
"pkgVersion": "1.5.2",
"banners": [
"banners/malware_scans.swig",
"banners/donations.swig"

2
package.json

@ -1,6 +1,6 @@
{
"name": "uguu",
"version": "1.5.1",
"version": "1.5.2",
"description": "Kawaii file host",
"homepage": "https://uguu.se/",
"repository": {

2
static/php/includes/Core.namespace.php

@ -347,7 +347,7 @@ namespace Core {
'VALUES (:hash, :orig, :name, :size, :date, :ip)'
);
$q->bindValue(':hash', Upload::$SHA1, PDO::PARAM_STR);
$q->bindValue(':orig', strip_tags(Upload::$FILE_NAME), PDO::PARAM_STR);
$q->bindValue(':orig', Upload::$FILE_NAME, PDO::PARAM_STR);
$q->bindValue(':name', Upload::$NEW_NAME_FULL, PDO::PARAM_STR);
$q->bindValue(':size', Upload::$FILE_SIZE, PDO::PARAM_INT);
$q->bindValue(':date', time(), PDO::PARAM_STR);

2
static/php/includes/Upload.class.php

@ -45,7 +45,7 @@ class Upload
$files = self::diverseArray($files);
foreach ($files as $file) {
self::$FILE_NAME = $file['name'];
self::$FILE_NAME = strip_tags($file['name']);
self::$FILE_SIZE = $file['size'];
self::$TEMP_FILE = $file['tmp_name'];
self::$SHA1 = sha1_file(self::$TEMP_FILE);

Loading…
Cancel
Save