Browse Source

SECURITY: disallow execution of cli scripts from webserver context

pull/40/head
czaks 10 years ago
parent
commit
87677f7ed4
  1. 4
      tools/inc/cli.php

4
tools/inc/cli.php

@ -13,6 +13,10 @@ error_reporting(E_ALL);
set_time_limit(0);
$shell_path = getcwd();
if (isset ($_SERVER['REMOTE_ADDR']) && $_SERVER['REMOTE_ADDR'] != '127.0.0.1' && $_SERVER['REMOTE_ADDR'] != '::1') {
die("This script is executable only from Command Line Interface.");
}
if(getenv('TINYBOARD_PATH') !== false)
$dir = getenv('TINYBOARD_PATH');
elseif(file_exists('inc/functions.php'))

Loading…
Cancel
Save