From: Philipp <admin@philipp.info>
Date: Wed, 2 Nov 2022 18:58:01 +0000 (+0100)
Subject: Fix possible security issue
X-Git-Url: https://git.mxchange.org/?a=commitdiff_plain;h=89fde911f9d13d70eec7040c2f72c6f4a855dc8f;p=friendica.git

Fix possible security issue
---

diff --git a/src/Module/Calendar/Export.php b/src/Module/Calendar/Export.php
index 30a1bc44de..74fc52b464 100644
--- a/src/Module/Calendar/Export.php
+++ b/src/Module/Calendar/Export.php
@@ -58,6 +58,10 @@ class Export extends BaseModule
 
 	protected function rawContent(array $request = [])
 	{
+		if (!$this->session->getLocalUserId()) {
+			throw new HTTPException\UnauthorizedException($this->t('Permission denied.'));
+		}
+
 		$owner = User::getByNickname($this->parameters['nickname'], ['uid']);
 		if (empty($owner)) {
 			throw new HTTPException\NotFoundException($this->t('User not found.'));