WordPress.org
Get WordPress

Make WordPress Core

Changeset 6521


Ignore:
Timestamp:
12/29/2007 03:14:53 AM (16 years ago)
Author:
ryan
Message:

Extra traversal check.

File:
1 edited

Legend:

Unmodified
Added
Removed

  • branches/2.3/wp-admin/includes/file.php

    r6116 r6521  
    4444
    4545function validate_file( $file, $allowed_files = '' ) {
     46    if ( false !== strpos( $file, '..' ))
     47        return 1;
     48
    4649    if ( false !== strpos( $file, './' ))
    4750        return 1;
Note: See TracChangeset for help on using the changeset viewer.