diff options
| author | Steven Wittens <steven@10.no-reply.drupal.org> | 2004-11-02 12:43:35 +0000 |
|---|---|---|
| committer | Steven Wittens <steven@10.no-reply.drupal.org> | 2004-11-02 12:43:35 +0000 |
| commit | 3e36c7864bac235259f4a01d4b9540719e51a53d (patch) | |
| tree | 5e116b43016b97d30d3c4a8bddb76ed68152b485 | |
| parent | f69437deadac37dcb646035bccaaa5c7610305d8 (diff) | |
| download | brdo-3e36c7864bac235259f4a01d4b9540719e51a53d.tar.gz brdo-3e36c7864bac235259f4a01d4b9540719e51a53d.tar.bz2 | |
#12167: Respect 'bypass input data check' permission in file.inc.
| -rw-r--r-- | includes/file.inc | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/includes/file.inc b/includes/file.inc index f9306928c..4410fe349 100644 --- a/includes/file.inc +++ b/includes/file.inc @@ -355,7 +355,7 @@ function file_save_upload($source, $dest = 0, $replace = FILE_EXISTS_RENAME) { } } - if (!valid_input_data($file)) { + if (!user_access('bypass input data check') && !valid_input_data($file)) { watchdog('error', t('Possible exploit abuse: invalid data.')); drupal_set_message(t('File upload failed: invalid data.'), 'error'); return 0; |