}
// Extract path and image information
-if( !isset( $_SERVER['PATH_INFO'] ) )
- wfForbidden('img-auth-accessdenied','img-auth-nopathinfo');
+if( !isset( $_SERVER['PATH_INFO'] ) ) {
+ if( isset( $_GET['path'] ) ) $path = $_GET['path'];
+ else wfForbidden('img-auth-accessdenied','img-auth-nopathinfo');
+} else {
+ $path = $_SERVER['PATH_INFO'];
+}
-$path = $_SERVER['PATH_INFO'];
-$filename = realpath( $wgUploadDirectory . $_SERVER['PATH_INFO'] );
+$filename = realpath( $wgUploadDirectory . '/' . $path );
$realUpload = realpath( $wgUploadDirectory );
// Basic directory traversal check