mbirth/LuckyCoinkydink
Archived
1
0
Fork 0
Code Issues Pull Requests Activity

Security fixes from Tim Coen (file upload, comment token escaping, 2k11 js comment name escaping)

Browse Source
This commit is contained in:
Garvin Hicking
2015-07-24 13:27:21 +02:00
parent c4f9b721e7
commit 00be5d7b4c
7 changed files with 21 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
include/functions_images.inc.php
View File

@ -18,7 +18,7 @@ function serendipity_isActiveFile($file) {
return true;
}
$core = preg_match('@\.(php.*|[psj]html?|aspx?|cgi|jsp|py|pl)$@i', $file);
$core = preg_match('@\.(php.*|[psj]html?|pht|aspx?|cgi|jsp|py|pl)$@i', $file);
if ($core) {
return true;
}