mirror/zoneminder
1
0
Fork 0
mirror of https://github.com/ZoneMinder/zoneminder.git synced 2025-12-23 22:37:53 -05:00
Code Issues Packages Projects Releases Wiki Activity

Sanitise displayinterval,speed and scale parameters. Fixes GHSA-pjjm-3qxp-6hj8

Browse Source
This commit is contained in:
Isaac Connor
2024-05-30 09:55:50 -04:00
parent 4602cd0470
commit b51c5df0cb
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
web/skins/classic/views/montagereview.php
View File

@@ -212,7 +212,7 @@ if (isset($_REQUEST['fit']))
$fitMode = validCardinal($_REQUEST['fit']);
if (isset($_REQUEST['scale']))
$defaultScale = validHtmlStr($_REQUEST['scale']);
$defaultScale = validCardinal($_REQUEST['scale']);
else
$defaultScale = 1;
@@ -236,7 +236,7 @@ for ( $i = 0; $i < count($speeds); $i++ ) {
$initialDisplayInterval = 1000;
if (isset($_REQUEST['displayinterval']))
$initialDisplayInterval = validHtmlStr($_REQUEST['displayinterval']);
$initialDisplayInterval = validCardinal($_REQUEST['displayinterval']);
$minTimeSecs = $maxTimeSecs = 0;
if (isset($minTime) && isset($maxTime)) {