[svn r21125] Fixed vulnerable get parameter: file - partial FS#4261

17 years ago · 1381228aed
parent a66f62cf0c
commit 1381228aed
1 changed files with 3 additions and 0 deletions
--- a/main/exercice/testheaderpage.php
+++ b/main/exercice/testheaderpage.php
@ -13,6 +13,9 @@ require '../inc/global.inc.php';
 require_once(api_get_path(SYS_CODE_PATH).'exercice/hotpotatoes.lib.php');
 $documentPath= api_get_path(SYS_COURSE_PATH).$_course['path']."/document";
 $my_file = Security::remove_XSS($_GET['file']);
+
+$my_file=str_replace(array('../','\\..','\\0','..\\'),array('','','',''),urldecode($my_file));
+
 $title = GetQuizName($my_file,$documentPath);
 if ($title =='') {
 	$title = GetFileName($my_file);