sergiotarxz/Wordpress
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Strip ../ in reading.

Browse Source 
git-svn-id: https://develop.svn.wordpress.org/trunk@1020 602fd350-edb4-49c9-b593-d223f7449a82
This commit is contained in:
Matt Mullenweg 2004-03-27 17:05:16 +00:00
parent 5a37c37d10
commit 0864452ab6
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
wp-admin/templates.php
View File

@ -83,6 +83,7 @@ default:
$file = '.' . $file; $file = '.' . $file;
$file = stripslashes($file); $file = stripslashes($file);
$file = str_replace('../', '', $file);
$file = '../' . $file; $file = '../' . $file;
if (!is_file($file)) if (!is_file($file))