Added a return false if an image doesn't pass XSS cleaning to prevent file_get_contents from returning a NULL and passing through unscathed.

commit: bb2c83bddbf51c42815be3de60eab24fd87ae392 [log] [tgz]
author: Wes Baker <wes@wesbaker.com> Fri May 04 18:44:24 2012 -0400
committer: Wes Baker <wes@wesbaker.com> Fri May 04 18:44:24 2012 -0400
tree: ead796d441ef3e9d70347f98a48fda8478a0a867
parent: 5335bc317f07f12c0f0bae5ac9189f75fcad0f1c [diff]
diff --git a/system/libraries/Upload.php b/system/libraries/Upload.php
index 8ad6705..4a4a66f 100644
--- a/system/libraries/Upload.php
+++ b/system/libraries/Upload.php

@@ -850,6 +850,10 @@
 			{
 				return TRUE; // its an image, no "triggers" detected in the first 256 bytes, we're good
 			}
+			else
+			{
+				return FALSE;
+			}
 		}
 
 		if (($data = @file_get_contents($file)) === FALSE)
@@ -1099,4 +1103,4 @@
 }
 
 /* End of file Upload.php */
-/* Location: ./system/libraries/Upload.php */
\ No newline at end of file
+/* Location: ./system/libraries/Upload.php */
commit	bb2c83bddbf51c42815be3de60eab24fd87ae392	[log] [tgz]
author	Wes Baker <wes@wesbaker.com>	Fri May 04 18:44:24 2012 -0400
committer	Wes Baker <wes@wesbaker.com>	Fri May 04 18:44:24 2012 -0400
tree	ead796d441ef3e9d70347f98a48fda8478a0a867
parent	5335bc317f07f12c0f0bae5ac9189f75fcad0f1c [diff]