security fix to pixidou editor

exponentcms · Sep 14, 2016 · c1092f1 · c1092f1
1 parent e916702
commit c1092f1
Showing 1 changed file with 5 additions and 2 deletions.
diff --git a/framework/modules/pixidou/controllers/pixidouController.php b/framework/modules/pixidou/controllers/pixidouController.php
@@ -58,8 +58,11 @@ function editor() {
     }
 
     public function exitEditor() {
-
-        //eDebug($this->params,true);
+        // clean up parameters
+        $this->params['fid'] = intval($this->params['fid']);
+        if (!empty($this->params['cpi']) && strpos($this->params['cpi'], '..') !== false) {
+            $this->params['exitType'] = 'error';
+        }
         switch ($this->params['exitType']) {
             case 'saveAsCopy':
                 $oldimage = new expFile($this->params['fid']);