cgi-bin/text-to-html-filter.cgi: security check on path prefix

2021-08-02 09:55:39 +02:00 · 2021-08-02 09:55:39 +02:00 · 9a8139f571
commit 9a8139f571
parent ba336825f1
1 changed files with 1 additions and 1 deletions
--- a/cgi-bin/text-to-html-filter.cgi
+++ b/cgi-bin/text-to-html-filter.cgi
@ -4,7 +4,7 @@ ext=${file/*.}
 range=10000
 filename="/var/www/www.openmamba.org/$file"
 filename_check=`readlink -f $filename`
-[ "${filename_check:0:27}" = "/mnt/sdc1/ftp/pub/openmamba" ] || exit 0
+[ "${filename_check:0:22}" = "/var/ftp/pub/openmamba" ] || exit 0
 if [ "$page" ]; then
   [ $page -gt 0 ] || page=1
 else