New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Security: Tutup celah unggah script PHP melalui unggah template rtf surat master #1008

Closed
eddieridwan opened this Issue May 10, 2018 · 1 comment

Comments

1 participant
@eddieridwan
Collaborator

eddieridwan commented May 10, 2018

Bagaimana alurnya sampai muncul masalah?

  1. Pergi ke halaman Cetak Surat > Master Surat
  2. Pilih surat, dan klik tombol Unggah
  3. Unggah berkas PHP yang ekstensinya ditambah .rtf

Seperti apa yang diharapkan?

Berkas tersebut tidak bisa diunggah, dengan pesan error yang menyatakan jenis file tidak dibolehkan.

Apa yang terjadi?

Saat ini berkas tersebut bisa diunggah.

Informasi tambahan

Tanya Jawab
Versi OpenSID 2.12
Versi PHP
System operasi

@eddieridwan eddieridwan self-assigned this May 10, 2018

@eddieridwan eddieridwan added this to SUDAH DI MASTER in Rilis yang sedang dikerjakan May 10, 2018

eddieridwan added a commit that referenced this issue May 10, 2018

@eddieridwan

This comment has been minimized.

Collaborator

eddieridwan commented May 10, 2018

Sudah dicommit ke master.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment