From db8f2c1d35a0e295d22caac4f474cd7b310f5693 Mon Sep 17 00:00:00 2001
From: fntr <2292534337@qq.com>
Date: Fri, 22 Mar 2024 22:40:01 +0800
Subject: [PATCH] =?UTF-8?q?fix=20=E4=BB=BB=E6=84=8F=E6=96=87=E4=BB=B6?=
 =?UTF-8?q?=E8=AF=BB=E5=8F=96?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Signed-off-by: fntr <2292534337@qq.com>
---
 .../java/com/cskefu/cc/controller/resource/MediaController.java | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/contact-center/app/src/main/java/com/cskefu/cc/controller/resource/MediaController.java b/contact-center/app/src/main/java/com/cskefu/cc/controller/resource/MediaController.java
index f3a97d6a..8a68c080 100644
--- a/contact-center/app/src/main/java/com/cskefu/cc/controller/resource/MediaController.java
+++ b/contact-center/app/src/main/java/com/cskefu/cc/controller/resource/MediaController.java
@@ -166,7 +166,7 @@ public class MediaController extends Handler {
     @RequestMapping("/template")
     @Menu(type = "resouce", subtype = "template")
     public void template(HttpServletResponse response, HttpServletRequest request, @Valid String filename) throws IOException {
-        if (StringUtils.isNotBlank(filename)) {
+        if (StringUtils.isNotBlank(filename) && !(filename.contains("../") || filename.contains("..\\"))) {
             InputStream is = MediaController.class.getClassLoader().getResourceAsStream(TEMPLATE_DATA_PATH + filename);
             if (is != null) {
                 response.setContentType("text/plain");