[geeklog-cvs] Geeklog-1.x/public_html/fckeditor/editor/filemanager/connectors/php upload.php, 1.3, 1.4
Dirk Haun
dhaun at qs1489.pair.com
Sun Sep 21 04:37:14 EDT 2008
Update of /cvsroot/geeklog/Geeklog-1.x/public_html/fckeditor/editor/filemanager/connectors/php
In directory qs1489.pair.com:/tmp/cvs-serv33344/public_html/fckeditor/editor/filemanager/connectors/php
Modified Files:
upload.php
Log Message:
Fixed protection against direct execution on non-case sensitive file systems
Index: upload.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/public_html/fckeditor/editor/filemanager/connectors/php/upload.php,v
retrieving revision 1.3
retrieving revision 1.4
diff -C2 -d -r1.3 -r1.4
*** upload.php 2 Sep 2008 19:02:46 -0000 1.3
--- upload.php 21 Sep 2008 08:37:11 -0000 1.4
***************
*** 23,27 ****
*/
! if (strpos($_SERVER['PHP_SELF'], 'upload.php') !== false) {
die('This file can not be used on its own!');
}
--- 23,27 ----
*/
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'upload.php') !== false) {
die('This file can not be used on its own!');
}
More information about the geeklog-cvs
mailing list