Skip to content

Commit

Permalink
[-] 默认不生成缩略图
Browse files Browse the repository at this point in the history
受 image magic 库的RCE漏洞(CVE-2016-3714)影响,不再默认开启缩略图。
  • Loading branch information
xbzbing committed May 5, 2016
1 parent 1d2af32 commit b60c395
Showing 1 changed file with 3 additions and 2 deletions.
5 changes: 3 additions & 2 deletions UEditorController.php
Original file line number Diff line number Diff line change
Expand Up @@ -38,10 +38,11 @@ class UEditorController extends Controller

/**
* 缩略图设置
* 默认为200*200,如果设置为空数组则不生成缩略图
* 默认不开启
* ['height' => 200, 'width' => 200]表示生成200*200的缩略图,如果设置为空数组则不生成缩略图
* @var array
*/
public $thumbnail = ['height' => 200, 'width' => 200];
public $thumbnail = [];

/**
* 图片缩放设置
Expand Down

0 comments on commit b60c395

Please sign in to comment.