LBRYFoundation/pool
1
0
Fork 0
mirror of https://github.com/LBRYFoundation/pool.git synced 2025-08-23 17:37:25 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

coindb: avoid html in retrieved icons

Browse source
This commit is contained in:
Tanguy Pruvot 2018-06-21 17:27:02 +02:00
parent 0606c9ada8
commit 9038f0941a
2 changed files with 2 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
web/yaamp/commands/CheckupCommand.php
View file

@ -188,7 +188,7 @@ class CheckupCommand extends CConsoleCommand
if (!empty($coin->image)) {
if (file_exists($this->basePath.$coin->image)) {
$data = file_get_contents($this->basePath.$coin->image);
if (strstr($data, "<script ")) {
if (strstr($data, "<script") || strstr($data, "<html")) {
unlink($this->basePath.$coin->image);
$coin->image = NULL;
$nbDropped += $coin->save();

2
web/yaamp/commands/CoindbCommand.php
View file

@ -441,7 +441,7 @@ class CoindbCommand extends CConsoleCommand
} catch (Exception $e) {
continue;
}
if (strlen($data) < 3000 || strstr($data, 'script src')) continue;
if (strlen($data) < 3000 || strstr($data, '<script') || strstr($data,'<html')) continue;
echo $symbol." icon found\n";
file_put_contents($local, $data);
if (filesize($local) > 0) {