- Php warning correction
- bug 0000002 correction : forbidden characters on file are now checked git-svn-id: http://piwigo.org/svn/branches/release-1_3@315 68402e56-0260-453c-a942-63ccdbb3a9ee
This commit is contained in:
z0rglub
parent
eedb9e3d62
commit
d069762615
1 changed files with 10 additions and 1 deletions
|
|
@ -168,6 +168,7 @@ if ( isset( $_POST['submit'] ) and !isset( $_GET['waiting_id'] ) )
|
|||
array_push( $error, $lang['upload_err_username'] );
|
||||
}
|
||||
|
||||
$date_creation = '';
|
||||
if ( $_POST['date_creation'] != '' )
|
||||
{
|
||||
list( $day,$month,$year ) = explode( '/', $_POST['date_creation'] );
|
||||
|
|
@ -193,6 +194,14 @@ if ( isset( $_POST['submit'] ) and !isset( $_GET['waiting_id'] ) )
|
|||
$xml_infos.= ' name="'.htmlspecialchars( $_POST['name'], ENT_QUOTES).'"';
|
||||
$xml_infos.= ' />';
|
||||
|
||||
if ( !preg_match( '/^[a-zA-Z0-9-_.]+$/', $_FILES['picture']['name'] ) )
|
||||
{
|
||||
// reload language file with administration labels
|
||||
$isadmin = true;
|
||||
include( './language/'.$user['language'].'.php' );
|
||||
array_push( $error, $lang['update_wrong_dirname'] );
|
||||
}
|
||||
|
||||
if ( sizeof( $error ) == 0 )
|
||||
{
|
||||
$result = validate_upload( $path, $conf['upload_maxfilesize'],
|
||||
|
|
|
|||
Loading…
Add table
Reference in a new issue