external-repos/pictshare
1
0
Fork 0
mirror of https://github.com/HaschekSolutions/pictshare.git synced 2025-11-11 10:46:22 +00:00
Code Issues Packages Projects Releases Wiki Activity

disable follow to avoid CVEs

Browse Source
This commit is contained in:
Chris
2023-11-02 20:23:01 +01:00
parent d349ee8fc6
commit 774c8e0112
1 changed files with 9 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
api/geturl.php
View File

@@ -42,7 +42,15 @@ else if(remote_filesize($url)*0.000001 > 20)
$name = basename($url);
$tmpfile = ROOT.DS.'tmp'.DS.$name;
file_put_contents($tmpfile,file_get_contents($url));
$context = stream_context_create(
array(
"http" => array(
"follow_location" => false,
),
)
);
file_put_contents($tmpfile,file_get_contents($url, false, $context));
$type = getTypeOfFile($tmpfile);