Skip to content
Permalink
Browse files

* Fix Bug #433, secure variable on first time installation to prevent

      RCE, thanks to Shinkurt
  • Loading branch information...
garvinhicking committed Dec 19, 2016
1 parent 9c76299 commit bba6a840f4d53cbaf62971a3078a98c8ddf92b85
Showing with 4 additions and 1 deletion.
  1. +3 −0 docs/NEWS
  2. +1 −1 include/functions_installer.inc.php
@@ -4,6 +4,9 @@ Version 2.0.6 ()
* Fix Bug #428, regression when fetching remote files, wrong call
to HTTP_Request::getEffectiveUrl()

* Fix Bug #433, secure variable on first time installation to prevent
RCE, thanks to Shinkurt

Version 2.0.5 (November 28th, 2016)
------------------------------------------------------------------------

@@ -629,7 +629,7 @@ function serendipity_checkInstallation() {
$errs[] = INSTALL_DBPREFIX_INVALID;
}
$serendipity['dbType'] = $_POST['dbType'];
$serendipity['dbType'] = preg_replace('@[^a-z0-9-]@imsU', '', $_POST['dbType']);
// Probe database
// (do it after the dir stuff, as we need to be able to create the sqlite database)
include_once(S9Y_INCLUDE_PATH . "include/db/{$serendipity['dbType']}.inc.php");

0 comments on commit bba6a84

Please sign in to comment.
You can’t perform that action at this time.