hz/java-servers
1
0
Fork 0
mirror of https://codeup.aliyun.com/67762337eccfc218f6110e0e/per-boe/java-servers.git synced 2025-12-08 18:36:51 +08:00
Code Issues Packages Projects Releases Wiki Activity

ZIP条目覆盖,补充

Browse Source
This commit is contained in:
yang
2024-08-26 19:27:07 +08:00
parent e16b890a8d
commit fcb9b83896
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
modules/boe-module-scorm/src/main/java/com/xboe/module/scorm/cam/load/ZipUtils.java
View File

@@ -60,7 +60,7 @@ public class ZipUtils {
}
public static boolean decompressZip(String zipFilePath, String saveFileDir) {
if (saveFileDir.contains("..")) {
if (zipFilePath.contains("..") || saveFileDir.contains("..")) {
throw new SecurityException("输入路径包含不安全的字符");
}