[PHPBB3-11534] Remote avatar does not properly check if remote file is an image

Details

Type: Bug
Status: Closed (View Workflow)
Priority: Minor
Resolution: Fixed
Affects Version/s: 3.0.11, 3.1.0-dev
Fix Version/s: 3.1.0-a2
Component/s: ACP, User Control Panel (UCP), Viewing posts
Labels:
None

GitHub Pull Request URL:
https://github.com/phpbb/phpbb/pull/1819

Description

The remote avatar should throw an error when an incorrect image link is supplied, i.e. something like this link to a 404 page on phpbb.com:
https://www.phpbb.com/avatar/55502f40dc8b7c769880b10874abc9d0.jpg

Instead, the avatar system thinks that a proper image has been supplied and updates the user's avatar data to point to this incorrect link. The "image" will not be loaded, however, this leaves us with a broken link to an image that should never happen in the first place.

Attachments

Activity

People

Assignee:

EXreaction [X] (Inactive)

Reporter:

Marc

Votes:

0 Vote for this issue

Watchers:

3 Start watching this issue

Dates

Created:

12/May/13 9:47 AM

Updated:

22/Jan/17 4:01 PM

Resolved:

04/Nov/13 6:22 PM