mirror of
https://github.com/BookStackApp/BookStack.git
synced 2024-10-01 05:36:00 +00:00
Update ImageRepo.php
fix image validation vulnerability
This commit is contained in:
parent
a5401eb00a
commit
64937ab826
@ -38,7 +38,7 @@ class ImageRepo
|
|||||||
*/
|
*/
|
||||||
public function imageExtensionSupported(string $extension): bool
|
public function imageExtensionSupported(string $extension): bool
|
||||||
{
|
{
|
||||||
return in_array(trim($extension, '. \t\n\r\0\x0B'), static::$supportedExtensions);
|
return in_array(trim($extension, ". \t\n\r\0\x0B"), static::$supportedExtensions);
|
||||||
}
|
}
|
||||||
|
|
||||||
/**
|
/**
|
||||||
|
Loading…
Reference in New Issue
Block a user