Andreas/siyuan
1
0
Fork 0
mirror of https://github.com/siyuan-note/siyuan.git synced 2026-01-19 23:06:09 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

🔒 Arbitrary file reading vulnerability https://github.com/siyuan-note/siyuan/issues/16860

Browse source 
Signed-off-by: Daniel <845765@qq.com>
This commit is contained in:
Daniel 2026-01-18 17:23:26 +08:00
parent f922745aa7
commit b2274baba2
No known key found for this signature in database
GPG key ID: 86211BA83DF03017
3 changed files with 118 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

16
kernel/api/file.go
View file

@ -66,14 +66,26 @@ func globalCopyFiles(c *gin.Context) {
srcs = append(srcs, s.(string))
}
for _, src := range srcs {
if !filelock.IsExist(src) {
for i, src := range srcs {
absSrc, _ := filepath.Abs(src)
if !filelock.IsExist(absSrc) {
msg := fmt.Sprintf("file [%s] does not exist", src)
logging.LogErrorf(msg)
ret.Code = -1
ret.Msg = msg
return
}
if util.IsSensitivePath(absSrc) {
msg := fmt.Sprintf("refuse to copy sensitive file [%s]", src)
logging.LogErrorf(msg)
ret.Code = -2
ret.Msg = msg
return
}
srcs[i] = absSrc
}
destDir := arg["destDir"].(string) // 相对于工作空间的路径