New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Fix filemanager security breaches #11287

merged 8 commits into from Nov 7, 2018


None yet
4 participants

jolelievre commented Nov 6, 2018

Questions Answers
Branch? 1.7.5.x
Description? Fix security breaches in TinyMCE filemanager plugin. Remove filemanager action image_size. Check mime type when uploading files. Fixed arbitrary image write/overwrite in Windows installation. Prevent image directory deletion.
Type? bug fix
Category? BO
BC breaks? no
Deprecations? no
Fixed ticket?
How to test?

This change is Reviewable

@jolelievre jolelievre changed the title from Fix filemanager 175 to Fix security in Filemanager plugin Nov 6, 2018

@jolelievre jolelievre changed the title from Fix security in Filemanager plugin to Fix filemanager security breaches Nov 6, 2018

@jolelievre jolelievre added this to the milestone Nov 6, 2018

@Quetzacoalt91 Quetzacoalt91 merged commit 4015484 into PrestaShop:1.7.5.x Nov 7, 2018

1 of 2 checks passed

Codacy/PR Quality Review Not up to standards. This pull request quality could be better.
continuous-integration/travis-ci/pr The Travis CI build passed

@jolelievre jolelievre deleted the jolelievre:fix-filemanager-175 branch Nov 27, 2018

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment