This repository has been archived by the owner on Jun 6, 2024. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 1.4k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request #195 from yuantuo666/dev
漏洞修复
- Loading branch information
Showing
4 changed files
with
15 additions
and
10 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -9,14 +9,14 @@ | |
| * | ||
| * 此项目 GitHub 地址:https://github.com/yuantuo666/baiduwp-php | ||
| * | ||
| * @version 2.2.0 | ||
| * @version 2.2.0.1 | ||
| * | ||
| * @author Yuan_Tuo <[email protected]> | ||
| * @link https://imwcr.cn/ | ||
| * @link https://space.bilibili.com/88197958 | ||
| * | ||
| */ | ||
| $programVersion_Index = "2.2.0"; | ||
| $programVersion_Index = "2.2.0.1"; | ||
| session_start(); | ||
| define('init', true); | ||
| if (version_compare(PHP_VERSION, '7.0.0', '<')) { | ||
|
|
@@ -329,7 +329,7 @@ function getip() | |
| } | ||
| return $ip; | ||
| } | ||
| $ip = getip(); | ||
| $ip = htmlspecialchars(getip(), ENT_QUOTES); // 防注入 #193 | ||
| $isipwhite = FALSE; //初始化 防止报错 | ||
| if (USING_DB) { | ||
| connectdb(); | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -3,12 +3,12 @@ | |
| * PanDownload 网页复刻版,PHP 语言版配置文件 | ||
| * !!!请勿修改本文件,如果手动修改后再在后台设置,可能导致config.php文件被清空!!! | ||
| * | ||
| * @version 2.2.0 | ||
| * @version 2.2.0.1 | ||
| * @author Yuan_Tuo <[email protected]> | ||
| * @link https://imwcr.cn/ | ||
| * @link https://space.bilibili.com/88197958 | ||
| */ | ||
| const programVersion = '2.2.0'; | ||
| const programVersion = '2.2.0.1'; | ||
| if (!defined('init')) { | ||
| http_response_code(403); header('Content-Type: text/plain; charset=utf-8'); header('Refresh: 3;url=./'); | ||
| die("HTTP 403 禁止访问!\r\n此文件是 PanDownload 网页复刻版 PHP 语言版项目版本 " . programVersion . " 的配置文件!\r\n禁止直接访问!"); | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -7,12 +7,12 @@ | |
| * | ||
| * 此项目 GitHub 地址:https://github.com/yuantuo666/baiduwp-php | ||
| * | ||
| * @version 2.2.0 | ||
| * @version 2.2.0.1 | ||
| * | ||
| * @author Yuan_Tuo <[email protected]> | ||
| * @link https://imwcr.cn/ | ||
| * @link https://space.bilibili.com/88197958 | ||
| * | ||
| */ | ||
|
|
||
| $programVersion_Updater = "2.2.0"; | ||
| $programVersion_Updater = "2.2.0.1"; | ||