Fix possible arbitrary code execution on misconfigured deployments

When `upload_validation` is enabled, and when VLD isn't installed, an attacker sending a multipart POST is able to get arbitrary PHP content executed. Reported-By: thomas-chauchefoin-tob
author: jvoisin 2025-12-31 00:45:46 +0100
committer: jvoisin 2026-01-05 21:43:10 +0100
commit: 9278dc77bab2a219e770a1b31dd6797bc9070e37 (patch)
tree: f0f97d6d5bd8878997eafbe2a1493c3be5cc9e9d /scripts/upload_validation.php
parent: e586b7df4e575d7d5e017b4134bdac9b297b667b (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/scripts/upload_validation.php b/scripts/upload_validation.php
index 6788d57..6480f20 100755
--- a/scripts/upload_validation.php
+++ b/scripts/upload_validation.php
@@ -16,6 +16,7 @@ function check($filename) {
                "-d", "vld.col_sep=@",
                "-d", "log_errors=0",
                "-d", "error_log=/dev/null",
+                "-l",
                escapeshellarg($filename),
                '2>&1',
                ];
author	jvoisin	2025-12-31 00:45:46 +0100
committer	jvoisin	2026-01-05 21:43:10 +0100
commit	9278dc77bab2a219e770a1b31dd6797bc9070e37 (patch)
tree	f0f97d6d5bd8878997eafbe2a1493c3be5cc9e9d /scripts/upload_validation.php
parent	e586b7df4e575d7d5e017b4134bdac9b297b667b (diff)

diff --git a/scripts/upload_validation.php b/scripts/upload_validation.php index 6788d57..6480f20 100755 --- a/scripts/upload_validation.php +++ b/scripts/upload_validation.php
@@ -16,6 +16,7 @@ function check($filename) {
16	"-d", "vld.col_sep=@",	16	"-d", "vld.col_sep=@",
17	"-d", "log_errors=0",	17	"-d", "log_errors=0",
18	"-d", "error_log=/dev/null",	18	"-d", "error_log=/dev/null",
		19	"-l",
19	escapeshellarg($filename),	20	escapeshellarg($filename),
20	'2>&1',	21	'2>&1',
21	];	22	];