Allow albums with two dots in them

author Christian Weiske <cweiske@cweiske.de>

Tue, 19 Dec 2017 20:18:21 +0000 (21:18 +0100)

committer Christian Weiske <cweiske@cweiske.de>

Tue, 19 Dec 2017 20:18:21 +0000 (21:18 +0100)
author Christian Weiske <cweiske@cweiske.de>
Tue, 19 Dec 2017 20:18:21 +0000 (21:18 +0100)
committer Christian Weiske <cweiske@cweiske.de>
Tue, 19 Dec 2017 20:18:21 +0000 (21:18 +0100)
diff --git a/www/index.php b/www/index.php

index 1ec3bf1de81f0341cbeb5110c6515edb133e376a..abbe69890cffa619396c73101ba2fbdaae63b93b 100644 (file)
--- a/www/index.php
+++ b/www/index.php
@@ -30,7 +30,7 @@ handleRequest(ltrim($path, '/'));
  function handleRequest($path)
  {
      global $varDir;
-    if (strpos($path, '..') !== false) {
+    if (strpos($path, '/../') !== false) {
          sendMessage('No');
          return;
      }
author	Christian Weiske <cweiske@cweiske.de>
	Tue, 19 Dec 2017 20:18:21 +0000 (21:18 +0100)
committer	Christian Weiske <cweiske@cweiske.de>
	Tue, 19 Dec 2017 20:18:21 +0000 (21:18 +0100)