adam/Piwigo
1
0
Fork 0
mirror of https://github.com/Piwigo/Piwigo.git synced 2026-06-02 04:15:05 +02:00
Code Issues Packages Projects Releases Wiki Activity

fixes GHSA-gphq-34pv-gvf3 sanity check for table prefix during install

Browse Source
This commit is contained in:
plegall
2026-03-30 15:41:54 +02:00
parent c9af737962
commit 81f8d65a25
1 changed files with 9 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
install.php
+9
View File
@@ -266,6 +266,15 @@ if (isset($_POST['install']))
pwg_db_check_charset(); pwg_db_check_charset();
if (
strlen($prefixeTable) > 20
or preg_match('/^\d/', $prefixeTable)
or !preg_match('/^[a-zA-Z0-9_$]*$/u', $prefixeTable)
)
{
$errors[] = 'invalid table prefix';
}
$webmaster = trim(preg_replace('/\s{2,}/', ' ', $admin_name)); $webmaster = trim(preg_replace('/\s{2,}/', ' ', $admin_name));
if (empty($webmaster)) if (empty($webmaster))
{ {