"hide_php" にファイルをアップロード
このコミットが含まれているのは:
コミット
8f22ed8b8a
|
@ -8,8 +8,6 @@ require $d_root.'/hide_php/conf/submit.php';
|
|||
require $d_root.'/hide_php/conf/form.php';
|
||||
require $d_root.'/hide_php/conf/bbs.php';
|
||||
|
||||
header("Content-Security-Policy:connect-src 'self';object-src 'none';base-uri 'self';script-src 'none';");
|
||||
|
||||
function image_text($image){
|
||||
if (empty($image)){
|
||||
return '';
|
||||
|
|
|
@ -5,8 +5,6 @@ require $d_root.'/hide_php/conf/submit.php';
|
|||
require $d_root.'/hide_php/conf/form.php';
|
||||
require $d_root.'/hide_php/conf/bbs.php';
|
||||
|
||||
$nonce = one_time_pass(20, 30);
|
||||
header("Content-Security-Policy:connect-src 'self';object-src 'none';base-uri 'self';script-src 'nonce-{$nonce}';");
|
||||
|
||||
//画像処理
|
||||
function image_text($image){
|
||||
|
@ -307,7 +305,7 @@ $output = '<h1>内容を修正</h1>'.$notice.'<p>以下、もとの内容です
|
|||
if ($_POST['pass'] === 'change'){
|
||||
(isset($_POST['edit_pass'])?$edit_pass = pass(h($_POST['edit_pass'])):form_die());
|
||||
if (isset($_POST['name'])){
|
||||
if ((!empty(trim_a($_POST['name']))) && (strlen($name) < 100)){
|
||||
if ((not_empty($_POST['name'])) && (strlen($name) < 100)){
|
||||
$name = h($_POST['name']);
|
||||
}
|
||||
} else {
|
||||
|
@ -435,7 +433,7 @@ if (file_exists($f)){
|
|||
|
||||
if (isset($submit)){
|
||||
if ($submit === 'editing_comment'){
|
||||
html_foot($d_root.'/js/text_color.js', $nonce);
|
||||
html_foot($d_root.'/js/text_color.js', '');
|
||||
exit;
|
||||
}
|
||||
}
|
||||
|
|
|
@ -37,7 +37,7 @@ if (isset($_GET['P'])){
|
|||
} else {
|
||||
$imageonly = false;
|
||||
}
|
||||
if ((substr((isset($_SERVER['HTTP_ACCEPT'])?$_SERVER['HTTP_ACCEPT']:''), 0, 6) === 'image/') || $imageonly){
|
||||
if ($imageonly){
|
||||
header('Content-Type:image/'.$type);
|
||||
readfile($file);
|
||||
} else {
|
||||
|
@ -61,7 +61,7 @@ foreach ($fols as $b){
|
|||
if (strpos($d[5], '{{'.$p.'}}') !== false){
|
||||
$title = get($d_root.'/sqlike/bbs/'.$b.'/'.$thread_file, 1);
|
||||
if ($b >= 10){
|
||||
$b = $b.':';
|
||||
$b = $b.'-';
|
||||
}
|
||||
$area = $b.str_replace('.txt', '', $thread_file).'#'.$d[0];
|
||||
$name = $d[1];
|
||||
|
@ -69,7 +69,7 @@ foreach ($fols as $b){
|
|||
$color = $d[3];
|
||||
$description = str_replace('<br>', '', preg_replace('/{{[0-9]+\.(gif|jpeg|jpg|png|webp|ico)}}/', '', $d[5]));
|
||||
if (strpos($description, '\\\\非表示\\\\') !== false){
|
||||
$description = '非表示';
|
||||
not_found();
|
||||
}
|
||||
break 3;
|
||||
}
|
||||
|
@ -91,8 +91,6 @@ if (!isset($description)){
|
|||
|
||||
|
||||
######html開始
|
||||
header("Content-Security-Policy:connect-src 'self'; object-src 'none'; base-uri 'self'; script-src 'none';");
|
||||
|
||||
$replace_array = [
|
||||
'TITLE' => '添付画像:'.mb_substr(preg_replace('/>>[0-9]+/', '', $description), 0, 20).'-',
|
||||
'DESCRIPTION' => $description,
|
||||
|
|
|
@ -2,8 +2,6 @@
|
|||
//直接アクセスしちゃだめ
|
||||
require $d_root.'/hide_php/conf/c.php';
|
||||
|
||||
$nonce = one_time_pass(20, 30);
|
||||
header("Content-Security-Policy:connect-src 'self';object-src 'none';base-uri 'self';script-src 'nonce-{$nonce}';");
|
||||
|
||||
|
||||
if (isset($_GET['width'], $_GET['height'])){
|
||||
|
@ -36,4 +34,4 @@ foreach (['{width}' => $width, '{height}' => $height] as $s => $r){
|
|||
//html表示
|
||||
echo $html;
|
||||
|
||||
html_foot($d_root.'/js/draw_new.js', $nonce);
|
||||
html_foot($d_root.'/js/draw_new.js', '');
|
||||
|
|
読み込み中…
新しいイシューから参照