github/myvesta
1
0
Fork 0
mirror of https://github.com/myvesta/vesta synced 2025-08-14 02:28:05 -07:00
Code Issues Projects Releases Packages Wiki Activity Actions

Merge pull request #506 from Flatta/fix-sec-backup

Browse source 
Fix #505: Strict backup filename check.
This commit is contained in:
Serghey Rodin 2015-12-11 21:48:23 +02:00
commit 4dce22cd77
1 changed files with 1 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

2
web/download/backup/index.php
View file

@ -13,7 +13,7 @@ if ($_SESSION['user'] == 'admin') {
}
if ((!empty($_SESSION['user'])) && ($_SESSION['user'] != 'admin')) {
if (preg_match("/^".$user."/i", $backup)) {
if (strpos($backup, $user.'.') === 0) {
header('Content-type: application/gzip');
header("Content-Disposition: attachment; filename=\"".$backup."\";" );
header("X-Accel-Redirect: /backup/" . $backup);