Merge pull request #1366 from aphofstede/2.1-stable Check cookie against md5 regex. 2.1 stable CSRF injection security fix

commit: 9394f8040ee989e2dfeec42732bc06e52c5ee0c6 [log] [tgz]
author: Andrey Andreev <narf@bofh.bg> Thu May 17 01:55:43 2012 -0700
committer: Andrey Andreev <narf@bofh.bg> Thu May 17 01:55:43 2012 -0700
tree: 4abbf8b47cb1acd956c9755cc4ad04ef983609cc
parent: e463c4d71c2fdcc224e70f7576582220ae64e3d7 [diff]
parent: 8f04c69fe65ddc2604425eaee811b50a909d905f [diff]
diff --git a/system/libraries/Upload.php b/system/libraries/Upload.php
index b0490de..0e5d73b 100644
--- a/system/libraries/Upload.php
+++ b/system/libraries/Upload.php

@@ -868,6 +868,10 @@
 			{
 				return TRUE; // its an image, no "triggers" detected in the first 256 bytes, we're good
 			}
+			else
+			{
+				return FALSE;
+			}
 		}
 
 		if (($data = @file_get_contents($file)) === FALSE)
commit	9394f8040ee989e2dfeec42732bc06e52c5ee0c6	[log] [tgz]
author	Andrey Andreev <narf@bofh.bg>	Thu May 17 01:55:43 2012 -0700
committer	Andrey Andreev <narf@bofh.bg>	Thu May 17 01:55:43 2012 -0700
tree	4abbf8b47cb1acd956c9755cc4ad04ef983609cc
parent	e463c4d71c2fdcc224e70f7576582220ae64e3d7 [diff]
parent	8f04c69fe65ddc2604425eaee811b50a909d905f [diff]