[geeklog-cvs] Geeklog-1.x/system lib-security.php,1.67,1.68
Dirk Haun
dhaun at qs1489.pair.com
Thu May 1 15:23:49 EDT 2008
Update of /cvsroot/geeklog/Geeklog-1.x/system
In directory qs1489.pair.com:/tmp/cvs-serv7076/system
Modified Files:
lib-security.php
Log Message:
Sanitize service filename
Index: lib-security.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/system/lib-security.php,v
retrieving revision 1.67
retrieving revision 1.68
diff -C2 -d -r1.67 -r1.68
*** lib-security.php 9 Mar 2008 10:23:13 -0000 1.67
--- lib-security.php 1 May 2008 19:23:47 -0000 1.68
***************
*** 813,816 ****
--- 813,817 ----
}
+ $service = COM_sanitizeFilename($service);
$servicefile = $_CONF['path_system'] . 'classes/authentication/' . $service
. '.auth.class.php';
More information about the geeklog-cvs
mailing list