Backup Directory URL can’t start with a slash
-
Hi, I just recognized that it is no longer possible to enter a Backup Directory URL beginning with a slash. That means you can only save backups in your WP folder, not longer next to your WP folder or on a different location on your server.
If I submit “/my/path/to/a/backup/directory” it will be altered into “my/path/to/a/backup/directory”.
I think the bug is in the function edit_form_post_save in the file inc/class-destination-folder.php.
All the best
Christian
-
Hi, thanks for your response. It might be a security step but then please make the result filterable, so that there is a possibility to ignore the security step if you want to store the backup next to the WP folder.
For example inc/class-destination-folder.php, line 325
return apply_filters('adjust_normalized_path', implode('/', $normalized), $normalized, $path);Then I could adjust that result:
function custom_normalized_path($normalized_path, $normalized, $path) { if (str_starts_with($path, '/') && !str_starts_with($normalized_path, '/')) { $normalized_path = '/' . $normalized_path; } return $normalized_path; } add_filter('adjust_normalized_path', 'custom_normalized_path', 10, 3);All the best
Christian+1
This circumstance is really unpleasant. I have always backed up outside the WordPress folder to have an additional level of security in case WordPress was attacked. Unfortunately, this is no longer possible.
Please implement a choice whether it should be possible or not to start the path to the backup folder with / or ../../.
- The topic ‘Backup Directory URL can’t start with a slash’ is closed to new replies.
