Andreas/siyuan
1
0
Fork 0
mirror of https://github.com/siyuan-note/siyuan.git synced 2025-09-22 00:20:47 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions

🔒 Potential data export disclosure security vulnerability https://github.com/siyuan-note/siyuan/issues/12213

Browse source
This commit is contained in:
Daniel 2024-08-08 10:58:43 +08:00
parent f8374201de
commit f9127e8e0f
No known key found for this signature in database
GPG key ID: 86211BA83DF03017
1 changed files with 1 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

1
kernel/server/serve.go
View file

@ -172,6 +172,7 @@ func rewritePortJSON(pid, port string) {
} }
func serveExport(ginServer *gin.Engine) { func serveExport(ginServer *gin.Engine) {
// Potential data export disclosure security vulnerability https://github.com/siyuan-note/siyuan/issues/12213
exportGroup := ginServer.Group("/export/", model.CheckAuth) exportGroup := ginServer.Group("/export/", model.CheckAuth)
exportGroup.Static("/", filepath.Join(util.TempDir, "export")) exportGroup.Static("/", filepath.Join(util.TempDir, "export"))
} }