DedeBIZ
/
DedeV6
Watch 2
Star 0
Fork 0
Code Pull Requests 0 Releases 25 Activity
国内流行的内容管理系统(CMS)多端全媒体解决方案 https://www.dedebiz.com
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
440 Commits
3 Branches
110MB
Tree: afc2911867
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'afc2911867'
${ noResults }
DedeV6/src/include/uploadsafe.inc.php

116 lines
4.2KB
Raw Blame History 

  1. <?php

  2. /**

  3.  * 文件上传安全校验方法

  4.  *

  5.  * @version        $Id: uploadsafe.inc.php 1 15:59 2020年8月19日Z tianya $

  6.  * @package        DedeBIZ.Libraries

  7.  * @copyright      Copyright (c) 2022, DedeBIZ.COM

  8.  * @license        https://www.dedebiz.com/license

  9.  * @link           https://www.dedebiz.com

  10.  */

  11. if (!defined('DEDEINC')) exit('dedebiz');

  12. 

  13. if (isset($_FILES['GLOBALS'])) exit('Request not allow!');

  14. 

  15. //为了防止用户通过注入的可能性改动了数据库

  16. //这里强制限定的某些文件类型禁止上传

  17. $cfg_not_allowall = "php|pl|cgi|asp|aspx|jsp|php3|shtm|shtml";

  18. $keyarr = array('name', 'type', 'tmp_name', 'size');

  19. if (

  20.     ($GLOBALS['cfg_html_editor'] == 'ckeditor' ||

  21.         $GLOBALS['cfg_html_editor'] == 'ckeditor4')  && isset($_FILES['upload'])

  22. ) {

  23.     $_FILES['imgfile'] = $_FILES['upload'];

  24.     $CKUpload = TRUE;

  25.     unset($_FILES['upload']);

  26. }

  27. foreach ($_FILES as $_key => $_value) {

  28.     foreach ($keyarr as $k) {

  29.         if (!isset($_FILES[$_key][$k])) {

  30.             exit('dedebiz');

  31.         }

  32.     }

  33.     if (preg_match('#^(cfg_|GLOBALS)#', $_key)) {

  34.         exit('Request var not allow for uploadsafe!');

  35.     }

  36.     $$_key = $_FILES[$_key]['tmp_name'];

  37.     ${$_key.'_name'} = $_FILES[$_key]['name'];

  38.     ${$_key.'_type'} = $_FILES[$_key]['type'] = preg_replace('#[^0-9a-z\./]#i', '', $_FILES[$_key]['type']);

  39.     ${$_key.'_size'} = $_FILES[$_key]['size'] = preg_replace('#[^0-9]#', '', $_FILES[$_key]['size']);

  40. 

  41.     if (is_array(${$_key.'_name'}) && count(${$_key.'_name'}) > 0) {

  42.         foreach (${$_key.'_name'} as $key => $value) {

  43.             if (!empty($value) && (preg_match("#\.(".$cfg_not_allowall.")$#i", $value) || !preg_match("#\.#", $value))) {

  44.                 if (!defined('DEDEADMIN')) {

  45.                     exit('Not Admin Upload filetype not allow !');

  46.                 }

  47.             }

  48.         }

  49.     } else {

  50.         if (!empty(${$_key.'_name'}) && (preg_match("#\.(".$cfg_not_allowall.")$#i", ${$_key.'_name'}) || !preg_match("#\.#", ${$_key.'_name'}))) {

  51.             if (!defined('DEDEADMIN')) {

  52.                 exit('Not Admin Upload filetype not allow !');

  53.             }

  54.         }

  55.     }

  56. 

  57.     if (empty(${$_key.'_size'})) {

  58.         ${$_key.'_size'} = @filesize($$_key);

  59.     }

  60.     $imtypes = array("image/pjpeg", "image/jpeg", "image/gif", "image/png", "image/xpng", "image/wbmp", "image/bmp");

  61. 

  62.     if (is_array(${$_key.'_type'}) && count(${$_key.'_type'}) > 0) {

  63.         foreach (${$_key.'_type'} as $key => $value) {

  64.             if (in_array(strtolower(trim($value)), $imtypes)) {

  65.                 $image_dd = @getimagesize($$_key);

  66.                 if ($image_dd == false) {

  67.                     continue;

  68.                 }

  69.                 if (!is_array($image_dd)) {

  70.                     exit('Upload filetype not allow !');

  71.                 }

  72.             }

  73. 

  74.             $imtypes = array(

  75.                 "image/pjpeg", "image/jpeg", "image/gif", "image/png",

  76.                 "image/xpng", "image/wbmp", "image/bmp"

  77.             );

  78. 

  79.             if (in_array(strtolower(trim($value)), $imtypes)) {

  80.                 $image_dd = @getimagesize($$_key);

  81.                 if ($image_dd == false) {

  82.                     continue;

  83.                 }

  84.                 if (!is_array($image_dd)) {

  85.                     exit('Upload filetype not allow !');

  86.                 }

  87.             }

  88.         }

  89.     } else {

  90.         if (in_array(strtolower(trim(${$_key.'_type'})), $imtypes)) {

  91.             $image_dd = @getimagesize($$_key);

  92.             if ($image_dd == false) {

  93.                 continue;

  94.             }

  95.             if (!is_array($image_dd)) {

  96.                 exit('Upload filetype not allow !');

  97.             }

  98.         }

  99. 

  100.         $imtypes = array(

  101.             "image/pjpeg", "image/jpeg", "image/gif", "image/png",

  102.             "image/xpng", "image/wbmp", "image/bmp"

  103.         );

  104. 

  105.         if (in_array(strtolower(trim(${$_key.'_type'})), $imtypes)) {

  106.             $image_dd = @getimagesize($$_key);

  107.             if ($image_dd == false) {

  108.                 continue;

  109.             }

  110.             if (!is_array($image_dd)) {

  111.                 exit('Upload filetype not allow !');

  112.             }

  113.         }

  114.     }

  115. }