banananetwork
/
tt-rss
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

use clean_filename() instead of basename()/clean() combinations in a bunch of places

Browse Source
master
Andrew Dolgov 5 years ago
parent 9c366a4811
commit d94348421d
3 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File

2
classes/backend.php
Unescape Escape View File

@ -88,7 +88,7 @@ class Backend extends Handler {
} }
function help() { function help() {
$topic = basename(clean($_REQUEST["topic"])); // only one for now $topic = clean_filename($_REQUEST["topic"]); // only one for now
if ($topic == "main") { if ($topic == "main") {
$info = get_hotkeys_info(); $info = get_hotkeys_info();

2
classes/pluginhost.php
Unescape Escape View File

@ -186,7 +186,7 @@ class PluginHost {
foreach ($plugins as $class) { foreach ($plugins as $class) {
$class = trim($class); $class = trim($class);
$class_file = strtolower(basename($class)); $class_file = strtolower(clean_filename($class));
if (!is_dir(__DIR__."/../plugins/$class_file") && if (!is_dir(__DIR__."/../plugins/$class_file") &&
!is_dir(__DIR__."/../plugins.local/$class_file")) continue; !is_dir(__DIR__."/../plugins.local/$class_file")) continue;

2
classes/rpc.php
Unescape Escape View File

@ -572,7 +572,7 @@ class RPC extends Handler_Protected {
function log() { function log() {
$msg = clean($_REQUEST['msg']); $msg = clean($_REQUEST['msg']);
$file = basename(clean($_REQUEST['file'])); $file = clean_filename($_REQUEST['file']);
$line = (int) clean($_REQUEST['line']); $line = (int) clean($_REQUEST['line']);
$context = clean($_REQUEST['context']); $context = clean($_REQUEST['context']);

Write Preview
Loading…
Cancel
Save