Channel: Issues for Drupal core

↧

\Drupal\file\Plugin\rest\resource\FileUploadResource uses basename() when it needs to use the Drupal version

February 13, 2019, 2:11 am

≫ Next: Files renamed by \_file_save_upload_single() do not have the correct filename on the File entity

≪ Previous: Improve accessibility of media library widget

Problem/Motivation

\Drupal\file\Plugin\rest\resource\FileUploadResource is using PHP's builtin basename() which is vulnerable to https://bugs.php.net/bug.php?id=77239

Proposed resolution

Use \Drupal\Core\File\FileSystem::basename() instead and add test coverage.

Remaining tasks

User interface changes

none

API changes

none

Data model changes

none

Release notes snippet

n/a

↧

Latest Images

7 clever tricks Primark does to keep you walking & buying more than you need...

7 clever tricks Primark does to keep you walking & buying more than you need...

July 20, 2025, 5:14 am

Art for Everyone! Autism advocacy, local stories, and indigenous pride in one...

Art for Everyone! Autism advocacy, local stories, and indigenous pride in one...

July 20, 2025, 5:06 am

Paintings of English Downs 2

Paintings of English Downs 2

July 20, 2025, 4:30 am

How Kerala Women Rescued a Dying Forest and Turned It Into a Safe Haven for...

How Kerala Women Rescued a Dying Forest and Turned It Into a Safe Haven for...

July 20, 2025, 3:30 am

Met Eireann warns of heavy rain & spot flooding for DAYS before big...

Met Eireann warns of heavy rain & spot flooding for DAYS before big...

July 20, 2025, 1:14 am

Who is Kevin Lerena’s wife Geraldine?

Who is Kevin Lerena’s wife Geraldine?

July 20, 2025, 12:57 am

Man stabs woman, baby to death inside Queens home, police say

Man stabs woman, baby to death inside Queens home, police say

July 19, 2025, 11:00 pm

Ang papel ni whistleblower Julie Patidongan sa kaso ng mga nawawalang sabungero

Ang papel ni whistleblower Julie Patidongan sa kaso ng mga nawawalang sabungero

July 19, 2025, 9:45 pm

Telangana Human Rights Commission (TGHRC) seeks report from revenue dept on...

Telangana Human Rights Commission (TGHRC) seeks report from revenue dept on...

July 19, 2025, 7:29 pm

Crisis-hit NHS fat cats raking in MASSIVE salaries as frontline services cry...

Crisis-hit NHS fat cats raking in MASSIVE salaries as frontline services cry...

July 19, 2025, 2:11 pm

Trending Articles

Moondru Mudichu 20-07-2016 – Polimer tv Serial

July 20, 2016, 9:25 am

James Martin Normandy tart on James Martin’s French Adventure

February 21, 2017, 7:26 am

Woman found dead in Pine home

June 4, 2017, 6:10 am

Mahakal Attitude Status

February 29, 2020, 9:52 am

236 kg banned scented tobacco worth Rs 1.26 lakh seized in Wadi

June 22, 2021, 5:54 am

[RELEASE THREAD]--_A-Team_--Cricket_Dream_5G

September 25, 2022, 7:14 pm

Love (2015).H264.Italian.English.Ac3.5.1.multisub.iCV-MIRCrew Seed (62)/Leech...

September 14, 2017, 10:49 am

Waves Complete v2019.02.14 Incl Emulator-R2R

February 16, 2019, 7:50 am

CC1310: Issue reading RSSI using CMD_RX_TEST

October 15, 2019, 2:57 pm

99 God Status for Whatsapp, Facebook

June 5, 2016, 11:46 pm

Detroit Mafia’s Consigliere Tony Pal, Possible Final Tie To Hoffa Mystery,...

January 12, 2019, 10:04 am

Students hit streets to save Agriculture College land in city

October 13, 2018, 2:20 am

Practice Sheet of Right form of verbs for HSC Students

September 22, 2019, 11:40 pm

Telangana Ration Card Online Status Ahara Bhadratha Card Online Status

June 25, 2016, 4:59 am

It’s Kind of a Funny Story 2010 Dual Audio 720p BRRip [Hindi – English] ESubs

June 8, 2016, 6:15 am

MATPER - EDITORIAL

March 13, 2019, 6:02 am

CalCen

June 4, 2020, 6:35 pm

The 10 Tennessee Cities With The Largest Black Population For 2021

December 21, 2020, 10:12 am

Best Suvichar in Hindi |बेस्ट सुविचार |शुभ विचार हिंदी में

March 7, 2020, 11:19 pm

ERICK FERNANDEZ-RODRIGUEZ Arrested by Miami-Dade County Corrections on Mar...

March 19, 2017, 1:25 am

Latest Images

7 clever tricks Primark does to keep you walking & buying more than you need...

7 clever tricks Primark does to keep you walking & buying more than you need...

July 20, 2025, 5:14 am

Art for Everyone! Autism advocacy, local stories, and indigenous pride in one...

Art for Everyone! Autism advocacy, local stories, and indigenous pride in one...

July 20, 2025, 5:06 am

Paintings of English Downs 2

Paintings of English Downs 2

July 20, 2025, 4:30 am

How Kerala Women Rescued a Dying Forest and Turned It Into a Safe Haven for...

How Kerala Women Rescued a Dying Forest and Turned It Into a Safe Haven for...

July 20, 2025, 3:30 am

Met Eireann warns of heavy rain & spot flooding for DAYS before big...

Met Eireann warns of heavy rain & spot flooding for DAYS before big...

July 20, 2025, 1:14 am

Who is Kevin Lerena’s wife Geraldine?

Who is Kevin Lerena’s wife Geraldine?

July 20, 2025, 12:57 am

Man stabs woman, baby to death inside Queens home, police say

Man stabs woman, baby to death inside Queens home, police say

July 19, 2025, 11:00 pm

Ang papel ni whistleblower Julie Patidongan sa kaso ng mga nawawalang sabungero

Ang papel ni whistleblower Julie Patidongan sa kaso ng mga nawawalang sabungero

July 19, 2025, 9:45 pm

Telangana Human Rights Commission (TGHRC) seeks report from revenue dept on...

Telangana Human Rights Commission (TGHRC) seeks report from revenue dept on...

July 19, 2025, 7:29 pm

Crisis-hit NHS fat cats raking in MASSIVE salaries as frontline services cry...

Crisis-hit NHS fat cats raking in MASSIVE salaries as frontline services cry...

July 19, 2025, 2:11 pm

© 2025 //www.rssing.com