tyler.durden/icingaweb2
1
0
Fork 0
mirror of https://github.com/Icinga/icingaweb2.git synced 2025-07-23 13:54:26 +02:00
Code Issues Packages Projects Releases Wiki Activity

InternalUrlValidator: prevent circumvention by URLs on the same VHost

Browse Source
This commit is contained in:
Alexander A. Klimov 2018-01-16 15:40:08 +01:00
parent e381b1e439
commit c2f74d49cb
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
library/Icinga/Web/Form/Validator/InternalUrlValidator.php
View File

@ -16,7 +16,7 @@ class InternalUrlValidator extends Zend_Validate_Abstract
*/ */
public function isValid($value) public function isValid($value)
{ {
if (Url::fromPath($value)->isExternal()) { if (Url::fromPath($value)->getRelativeUrl() === '') {
$this->_error('IS_EXTERNAL'); $this->_error('IS_EXTERNAL');
return false; return false;