Changeset 6521

Timestamp:

12/29/07 03:14:53 (5 months ago)

Author:

ryan

Message:

Extra traversal check.

Files:

• branches/2.3/wp-admin/includes/file.php (modified) (1 diff)

branches/2.3/wp-admin/includes/file.php

@@ -44 +44 @@
-
-function validate_file( $file, $allowed_files = '' ) {
+    if ( false !== strpos( $file, '..' ))
+        return 1;
+
-    if ( false !== strpos( $file, './' ))
-        return 1;