src/dbo/projects.php 1 location
|
@@ 396-400 (lines=5) @@
|
393 |
|
} |
394 |
|
|
395 |
|
// Check whether the file was uploaded via HTTP POST (security issue). |
396 |
|
if (!is_uploaded_file($xmlfile['tmp_name'])) |
397 |
|
{ |
398 |
|
debug_write_log(DEBUG_WARNING, '[project_import] Function "is_uploaded_file" warns that file named by "' . $xmlfile['tmp_name'] . '" was not uploaded via HTTP POST.'); |
399 |
|
return 0; |
400 |
|
} |
401 |
|
|
402 |
|
// Load XML file and check for parser errors. |
403 |
|
libxml_use_internal_errors(TRUE); |
src/dbo/records.php 1 location
|
@@ 2085-2089 (lines=5) @@
|
2082 |
|
return ERROR_UPLOAD_FORM_SIZE; |
2083 |
|
} |
2084 |
|
|
2085 |
|
if (!is_uploaded_file($attachfile['tmp_name'])) |
2086 |
|
{ |
2087 |
|
debug_write_log(DEBUG_WARNING, '[attachment_add] Function "is_uploaded_file" warns that file named by "' . $attachfile['tmp_name'] . '" was not uploaded via HTTP POST.'); |
2088 |
|
return NO_ERROR; |
2089 |
|
} |
2090 |
|
|
2091 |
|
if (ATTACHMENTS_TOTALSIZE != 0) |
2092 |
|
{ |