Merge pull request #686 from bhopkins0/patch-2

Security enchancement for getIP() function
2023-05-20 11:30:49 -04:00 · 2023-05-20 11:30:49 -04:00 · 0abc6b384c
parent c63b965807 23f7866c8f
commit 0abc6b384c
1 changed files with 3 additions and 0 deletions
--- a/functions.php
+++ b/functions.php
@ -85,6 +85,9 @@ function getIP() {
    } else {
        $ip = $_SERVER["HTTP_CF_CONNECTING_IP"] ?? $_SERVER['REMOTE_ADDR'];
    }
+    
+    if (!filter_var($ip, FILTER_VALIDATE_IP))
+        die("Potential Security Violation");

    return $ip;
 }