mirror of
https://github.com/siyuan-note/siyuan.git
synced 2026-03-01 10:20:16 +01:00
🔒 Arbitrary file reading vulnerability https://github.com/siyuan-note/siyuan/issues/16860
Signed-off-by: Daniel <845765@qq.com>
This commit is contained in:
parent
b2274baba2
commit
f8f4b51707
1 changed files with 1 additions and 0 deletions
|
|
@ -416,6 +416,7 @@ func IsSensitivePath(p string) bool {
|
|||
"passwd": {},
|
||||
"shadow": {},
|
||||
"pgpass": {},
|
||||
"hosts": {},
|
||||
"credentials": {}, // 如 aws credentials
|
||||
"config.json": {}, // docker config.json 可能含 token
|
||||
}
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue