Mirrors/Part-DB-server
2
0
Fork 0
mirror of https://github.com/Part-DB/Part-DB-server.git synced 2026-03-03 22:15:36 +01:00
Code Issues Packages Projects Releases Wiki Activity

Return null instead of throwing an exception that could lead to a denial of service when trying to generate a thumbnail for a non-image picture

Browse Source
This commit is contained in:
Jan Böhmer
2025-08-12 23:29:24 +02:00
parent 8b417d6441
commit d370f976a7
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
src/Services/Attachments/AttachmentURLGenerator.php
View File

@@ -112,12 +112,12 @@ class AttachmentURLGenerator
/**
* Returns a URL to a thumbnail of the attachment file.
* For external files the original URL is returned.
* @return string|null The URL or null if the attachment file is not existing
* @return string|null The URL or null if the attachment file is not existing or is invalid
*/
public function getThumbnailURL(Attachment $attachment, string $filter_name = 'thumbnail_sm'): ?string
{
if (!$attachment->isPicture()) {
throw new InvalidArgumentException('Thumbnail creation only works for picture attachments!');
return null;
}
if (!$attachment->hasInternal()){