friendica/friendica
6
2
Fork 0
mirror of https://github.com/friendica/friendica synced 2025-12-07 16:37:10 +01:00
Code Issues Projects Releases 3 Packages Wiki Activity

Merge pull request #15204 from Raroun/fix-hex2bin-validation

Browse source 
PHP-Warning: hex2bin validation in Search module
This commit is contained in:
Philipp 2025-09-25 15:21:54 +02:00 committed by GitHub
commit 9e66967933
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 2 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

3
src/Module/Search/Saved.php
View file

@ -15,6 +15,7 @@ use Friendica\Database\Database;
use Friendica\DI;
use Friendica\Module\Response;
use Friendica\Util\Profiler;
use Friendica\Util\Strings;
use Psr\Log\LoggerInterface;
class Saved extends BaseModule
@ -34,7 +35,7 @@ class Saved extends BaseModule
$action = $this->args->get(2, 'none');
$search = trim(rawurldecode($_GET['term'] ?? ''));
if (!empty($_GET['return_url'])) {
if (!empty($_GET['return_url']) && Strings::isHex($_GET['return_url'])) {
$return_url = hex2bin($_GET['return_url']);
} else {
$return_url = Search::getSearchPath($search);