composer/iTop
6
0
Fork 0
mirror of https://github.com/Combodo/iTop.git synced 2026-04-22 10:08:45 +02:00
Code Issues Packages Projects Releases Wiki Activity

N°2538 check path validity little improvements

Browse Source 
* ajax-backup : change code to be more readable
* does a realpath() call on basepath to avoid troubles when havin '/' on Windows
This commit is contained in:
Pierre Goiffon
2019-10-16 11:32:31 +02:00
parent 607d355c61
commit f65f22f333
3 changed files with 11 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
application/utils.inc.php
View File

@@ -2112,12 +2112,14 @@ class utils
*/
final public static function RealPath($sPath, $sBasePath)
{
$sRealBasePath = realpath($sBasePath); // avoid problems when having '/' on Windows for example
$sFileRealPath = realpath($sPath);
if ($sFileRealPath === false)
{
return false;
}
if (!self::StartsWith($sFileRealPath, $sBasePath))
if (!self::StartsWith($sFileRealPath, $sRealBasePath))
{
return false;
}