Merge pull request #1010 from Necromone/develop

fix 任意文件读取
2025-08-01 16:38:02 +08:00 · 2024-03-23 10:27:48 +08:00 · 2024-03-23 10:27:48 +08:00 · a8af534129
commit a8af534129
parent fed20f3d67 db8f2c1d35
1 changed files with 1 additions and 1 deletions
--- a/contact-center/app/src/main/java/com/cskefu/cc/controller/resource/MediaController.java
+++ b/contact-center/app/src/main/java/com/cskefu/cc/controller/resource/MediaController.java
@ -166,7 +166,7 @@ public class MediaController extends Handler {
    @RequestMapping("/template")
    @Menu(type = "resouce", subtype = "template")
    public void template(HttpServletResponse response, HttpServletRequest request, @Valid String filename) throws IOException {
-        if (StringUtils.isNotBlank(filename)) {
+        if (StringUtils.isNotBlank(filename) && !(filename.contains("../") || filename.contains("..\\"))) {
            InputStream is = MediaController.class.getClassLoader().getResourceAsStream(TEMPLATE_DATA_PATH + filename);
            if (is != null) {
                response.setContentType("text/plain");