Skip to content
GitLab
Projects
Groups
Snippets
Help
Loading...
Help
What's new
10
Help
Support
Community forum
Keyboard shortcuts
?
Submit feedback
Sign in
Toggle navigation
Open sidebar
project
drupal
Commits
4748ac2c
Commit
4748ac2c
authored
Oct 11, 2008
by
webchick
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
#319328
:
SA-2008
-060 (
#318706
): File upload access bypass.
parent
7e02f2f7
Changes
1
Hide whitespace changes
Inline
Side-by-side
Showing
1 changed file
with
1 addition
and
1 deletion
+1
-1
modules/upload/upload.module
modules/upload/upload.module
+1
-1
No files found.
modules/upload/upload.module
View file @
4748ac2c
...
...
@@ -184,7 +184,7 @@ function upload_node_form_submit($form, &$form_state) {
);
// Save new file uploads.
if
(
(
$user
->
uid
!=
1
||
user_access
(
'upload files'
)
)
&&
(
$file
=
file_save_upload
(
'upload'
,
$validators
,
file_directory_path
())))
{
if
(
user_access
(
'upload files'
)
&&
(
$file
=
file_save_upload
(
'upload'
,
$validators
,
file_directory_path
())))
{
$file
->
list
=
variable_get
(
'upload_list_default'
,
1
);
$file
->
description
=
$file
->
filename
;
$file
->
weight
=
0
;
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
.
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment