fixes #178, possible XSS via uploaded XML & MD files

2022-12-25 14:42:08 +01:00 · 2022-12-25 14:42:08 +01:00 · 3cc223dec5
commit 3cc223dec5
parent d3f3294965
1 changed files with 3 additions and 1 deletions
--- a/admin/panels/uploader/admin.uploader.php
+++ b/admin/panels/uploader/admin.uploader.php
@ -96,7 +96,9 @@ class admin_uploader_default extends AdminPanelAction {
 			'htm',
 			'html',
 			'wml',
-			'svg'
+			'svg',
+			'xml',
+			'md'
 		);

 		$imgs = array(