jrtechs
/
jrtechs-NodeJSBlog
mirror of https://github.com/jrtechs/NodeJSBlog.git
1
0
Fork 0
Code Issues 0 Releases 0 Wiki Activity
Browse Source

Fixed security issue with blog where .json and .js files were public to the web.

pull/34/head
jrtechs 5 years ago
parent
639cd1867e
commit
4e5160de3b
1 changed files with 5 additions and 2 deletions
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. +5
    -2
      includes/staticContentServer.js

+ 5
- 2
includes/staticContentServer.js View File

@ -35,8 +35,11 @@ module.exports=
//scripts
else if (filename.includes(".js"))
{
includes.sendJS(result, baseURL + filename);
return true;
if(baseURL.includes("includes/") || baseURL.includes("blogContent"))
{
includes.sendJS(result, baseURL + filename);
return true;
}
}
//html
else if (filename.includes(".html"))

Write Preview
Loading…
Cancel
Save