From 1381228aed814ac07c1e3c20c8e12bfb4e80a84b Mon Sep 17 00:00:00 2001
From: Cristian Fasanando <cristian.fasanando@beeznest.com>
Date: Sun, 31 May 2009 02:19:17 +0200
Subject: [PATCH] [svn r21125] Fixed vulnerable get parameter: file - partial
 FS#4261

---
 main/exercice/testheaderpage.php | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/main/exercice/testheaderpage.php b/main/exercice/testheaderpage.php
index d6c0b617f0..7df74d1eb9 100644
--- a/main/exercice/testheaderpage.php
+++ b/main/exercice/testheaderpage.php
@@ -13,6 +13,9 @@ require '../inc/global.inc.php';
 require_once(api_get_path(SYS_CODE_PATH).'exercice/hotpotatoes.lib.php');
 $documentPath= api_get_path(SYS_COURSE_PATH).$_course['path']."/document";
 $my_file = Security::remove_XSS($_GET['file']);
+
+$my_file=str_replace(array('../','\\..','\\0','..\\'),array('','','',''),urldecode($my_file));
+
 $title = GetQuizName($my_file,$documentPath);
 if ($title =='') {
 	$title = GetFileName($my_file);