smarty-php/smarty
1
0
Fork 0
mirror of https://github.com/smarty-php/smarty.git synced 2025-08-06 03:14:27 +02:00
Code Issues Packages Projects Releases Wiki Activity

- security fix in {math} plugin

Browse Source
This commit is contained in:
Uwe.Tews
2010-04-17 10:24:44 +00:00
parent 09c208eda6
commit d44ffe9132
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
libs/plugins/function.math.php
View File

@@ -39,7 +39,7 @@ function smarty_function_math($params, $smarty, $template)
}
// match all vars in equation, make sure all are passed
preg_match_all("!(?:0x[a-fA-F0-9]+)|([a-zA-Z][a-zA-Z0-9_]+)!",$equation, $match);
preg_match_all("!(?:0x[a-fA-F0-9]+)|([a-zA-Z][a-zA-Z0-9_]*)!",$equation, $match);
$allowed_funcs = array('int','abs','ceil','cos','exp','floor','log','log10',
'max','min','pi','pow','rand','round','sin','sqrt','srand','tan');
@@ -81,4 +81,4 @@ function smarty_function_math($params, $smarty, $template)
}
}
}
?>
?>