From 853ace7d83424f85d903f6ffe2352bf41f86b7ce Mon Sep 17 00:00:00 2001
From: jfriedli
Date: Fri, 8 May 2020 09:10:18 -0700
Subject: Resolve "Fuzzing Errors /api/upload"

---
 matweb/utils.py | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'matweb/utils.py')

diff --git a/matweb/utils.py b/matweb/utils.py
index ec9b99c..20c213d 100644
--- a/matweb/utils.py
+++ b/matweb/utils.py
@@ -65,6 +65,8 @@ def get_supported_extensions():
 
 def save_file(file, upload_folder):
     filename = secure_filename(file.filename)
+    if not filename:
+        raise ValueError('Invalid Filename')
     filepath = os.path.join(upload_folder, filename)
     file.save(os.path.join(filepath))
     return filename, filepath
-- 
cgit v1.3