Fix for CSRF in FileManager and UploadHandler

2025-08-21 05:44:08 -07:00 · 2021-09-04 15:31:34 +02:00 · 2021-09-04 15:31:34 +02:00 · 93de22a0b3
commit 93de22a0b3
parent 63861e4ffd
6 changed files with 29 additions and 9 deletions
--- a/web/upload/UploadHandler.php
+++ b/web/upload/UploadHandler.php
@ -3,10 +3,15 @@
 //session_start();

 // Preventing CSRF
-prevent_post_csrf(true);
+// prevent_post_csrf(true);

 include($_SERVER['DOCUMENT_ROOT']."/inc/main.php");

+// Check token
+if ((!isset($_REQUEST['token'])) || ($_SESSION['token'] != $_REQUEST['token'])) {
+    die("Wrong token or missing token");
+}
+
 // Check login_as feature
 $user = $_SESSION['user'];
 if (($_SESSION['user'] == 'admin') && (!empty($_SESSION['look']))) {