Skip to content
Snippets Groups Projects
Commit 75281c9c authored by Alexander Schnitzler's avatar Alexander Schnitzler Committed by Helmut Hummel
Browse files

[!!!][SECURITY] Add CSRF Protection for tce_file.php 

Add a token check in tce_file.php and token generation
everywhere forms for or links to tce_file.php are created.

Additionaly make sure, an instance of ExtendedFileUtility
is created in FileController on initialization to prevent
a fatal "Call to a member function on a non-object" error
in FileController::finish.

Releases: 6.2
Resolves: #55515
Change-Id: Ifd585661ac2cac6c88eaca5ad63b447d27e35395
Reviewed-on: https://review.typo3.org/27691
Reviewed-by: Helmut Hummel
Tested-by: Helmut Hummel
parent b5d82de8
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Showing
with 18 additions and 6 deletions
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment