mirror/webgui
1
0
Fork 0
mirror of https://github.com/unraid/webgui.git synced 2026-03-08 03:49:53 -05:00
Code Issues Packages Projects Releases Wiki Activity

harden preg_replace() in auth_request.php

Browse Source
This commit is contained in:
Eric Schultz
2020-01-16 15:06:14 -06:00
parent 23c7c420ee
commit 1254b79856
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
auth_request.php
View File

@@ -39,7 +39,7 @@ $arrWhitelist = [
'/webGui/images/case-model.png',
'/webGui/images/green-on.png'
];
if (in_array(preg_replace(['/\?v=\d+/','/\?\d+/'],'',$_SERVER['REQUEST_URI']),$arrWhitelist)) {
if (in_array(preg_replace(['/\?v=\d+$/','/\?\d+$/'],'',$_SERVER['REQUEST_URI']),$arrWhitelist)) {
// authorized
http_response_code(200);
} else {