Upload via URL: Make sure we're not vulnerable to this buffer overflow exploit. http://www.exploit-db.com/exploits/24487/

2013-08-13 00:07:23 +10:00 · 2013-08-13 00:07:23 +10:00 · 60b3cfc539
commit 60b3cfc539
parent 6fdbe76f7b
1 changed files with 1 additions and 0 deletions
--- a/post.php
+++ b/post.php
@ -295,6 +295,7 @@ if (isset($_POST['delete'])) {
 		curl_setopt($curl, CURLOPT_USERAGENT, 'Tinyboard');
 		curl_setopt($curl, CURLOPT_BINARYTRANSFER, true);
 		curl_setopt($curl, CURLOPT_FILE, $fp);
+		curl_setopt($curl, CURLOPT_PROTOCOLS, CURLPROTO_HTTP | CURLPROTO_HTTPS);
 		
 		if (curl_exec($curl) === false)
 			error($config['error']['nomove']);