tyler.durden
/
icingaweb2
mirror of https://github.com/Icinga/icingaweb2.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

InternalUrlValidator: prevent circumvention by URLs on the same VHost

This commit is contained in:
Alexander A. Klimov 2018-01-16 15:40:08 +01:00
parent e381b1e439
commit c2f74d49cb
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
library/Icinga/Web/Form/Validator/InternalUrlValidator.php
View File

@ -16,7 +16,7 @@ class InternalUrlValidator extends Zend_Validate_Abstract
*/
public function isValid($value)
{
if (Url::fromPath($value)->isExternal()) {
if (Url::fromPath($value)->getRelativeUrl() === '') {
$this->_error('IS_EXTERNAL');
return false;