Nemcio/Grav-Admin-Plugin
1
0
Fork 0
mirror of https://github.com/getgrav/grav-plugin-admin.git synced 2025-11-01 19:06:16 +01:00
Code Issues Packages Projects Releases Activity

Add ability to Sanitize SVGs on upload

Browse Source
This commit is contained in:
Andy Miller
2019-09-03 11:56:22 -06:00
parent 365dee700a
commit 789981b845
3 changed files with 15 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
classes/plugin/AdminBaseController.php
View File

@@ -10,6 +10,7 @@ use Grav\Common\Grav;
use Grav\Common\Media\Interfaces\MediaInterface;
use Grav\Common\Page\Interfaces\PageInterface;
use Grav\Common\Page\Media;
use Grav\Common\Security;
use Grav\Common\Uri;
use Grav\Common\User\Interfaces\UserInterface;
use Grav\Common\Utils;
@@ -388,6 +389,11 @@ class AdminBaseController
return false;
}
// Special Sanitization for SVG
if (Utils::contains($mime, 'svg', false)) {
Security::sanitizeSVG($tmp);
}
$upload->file->tmp_name = $tmp;
// Retrieve the current session of the uploaded files for the field