Friendica/friendica-github
1
0
Fork 0
mirror of https://github.com/friendica/friendica synced 2025-04-28 02:30:16 +00:00
Code Issues Projects Releases Packages Wiki Activity

Basepath Hardening

Browse source
This commit is contained in:
Philipp Holzer 2019-04-14 16:17:34 +02:00
parent e0911efc87
commit 1480380af6
No known key found for this signature in database
GPG key ID: 517BE60E2CE5C8A5
2 changed files with 55 additions and 13 deletions
Download patch file Download diff file Expand all files Collapse all files

12
src/Util/BasePath.php
View file

@ -19,15 +19,21 @@ class BasePath
*/
public static function create($basePath, array $server = [])
{
if (!$basePath && !empty($server['DOCUMENT_ROOT'])) {
if ((!$basePath || !is_dir($basePath)) && !empty($server['DOCUMENT_ROOT'])) {
$basePath = $server['DOCUMENT_ROOT'];
}
if (!$basePath && !empty($server['PWD'])) {
if ((!$basePath || !is_dir($basePath)) && !empty($server['PWD'])) {
$basePath = $server['PWD'];
}
return self::getRealPath($basePath);
$basePath = self::getRealPath($basePath);
if (!is_dir($basePath)) {
throw new \Exception(sprintf('\'%s\' is not a valid basepath', $basePath));
}
return $basePath;
}
/**