Loading includes/MediaOEmbedStreamWrapper.inc +4 −2 Original line number Diff line number Diff line Loading @@ -113,9 +113,11 @@ class MediaOEmbedStreamWrapper extends MediaReadOnlyStreamWrapper { $filename = drupal_basename($parsed_url['path']); if (strpos($filename, '.') !== FALSE) { $filename = file_munge_filename($filename, 'jpg jpeg gif png', FALSE); // Compare the extension with an allow-list. if (!preg_match('/\.(jpg|jpeg|gif|png)$/', $filename)) { return FALSE; } $filename = file_munge_filename($filename, '', FALSE); $path .= $filename; $local_uri = file_stream_wrapper_uri_normalize('public://media-oembed/' . $path); Loading Loading
includes/MediaOEmbedStreamWrapper.inc +4 −2 Original line number Diff line number Diff line Loading @@ -113,9 +113,11 @@ class MediaOEmbedStreamWrapper extends MediaReadOnlyStreamWrapper { $filename = drupal_basename($parsed_url['path']); if (strpos($filename, '.') !== FALSE) { $filename = file_munge_filename($filename, 'jpg jpeg gif png', FALSE); // Compare the extension with an allow-list. if (!preg_match('/\.(jpg|jpeg|gif|png)$/', $filename)) { return FALSE; } $filename = file_munge_filename($filename, '', FALSE); $path .= $filename; $local_uri = file_stream_wrapper_uri_normalize('public://media-oembed/' . $path); Loading
