X-Git-Url: https://jfr.im/git/uguu.git/blobdiff_plain/3b67377c5db4e77d255ba3307e25116890523dbb..32cba5812d2058c9762fae7b660ada93ea597758:/static/php/includes/Upload.class.php

diff --git a/static/php/includes/Upload.class.php b/static/php/includes/Upload.class.php
index 7de2e1d..9fb5e0f 100644
--- a/static/php/includes/Upload.class.php
+++ b/static/php/includes/Upload.class.php
@@ -28,12 +28,12 @@ class Upload
 {
 
     public static string $FILE_NAME;
-    public static string $FILE_EXTENSION;
+    public static mixed $FILE_EXTENSION;
     public static string $FILE_MIME;
     public static string $SHA1;
     public static string $NEW_NAME;
     public static string $NEW_NAME_FULL;
-    public static string $IP;
+    public static mixed $IP;
 
     public static string $FILE_SIZE;
     public static string $TEMP_FILE;
@@ -45,7 +45,7 @@ class Upload
         $files = self::diverseArray($files);
 
         foreach ($files as $file) {
-            self::$FILE_NAME = $file['name'];
+            self::$FILE_NAME = strip_tags($file['name']);
             self::$FILE_SIZE = $file['size'];
             self::$TEMP_FILE = $file['tmp_name'];
             self::$SHA1 = sha1_file(self::$TEMP_FILE);
@@ -142,12 +142,10 @@ class Upload
             finfo_close($finfo);
 
             $extension = explode('.', self::$FILE_NAME);
-            if(substr_count(self::$FILE_NAME, '.') === 0) {
-                self::$FILE_EXTENSION = null;
-            } elseif(substr_count(self::$FILE_NAME, '.') > 1) {
-                self::$FILE_EXTENSION = $extension[count($extension)-2].'.'.$extension[count($extension)-1];
-            } else {
+            if(substr_count(self::$FILE_NAME, '.') > 0) {
                 self::$FILE_EXTENSION = $extension[count($extension)-1];
+            } else {
+                self::$FILE_EXTENSION = null;
             }
 
             if (Settings::$LOG_IP) {