From 2b7ea22ea65fc9b18152b0aa8e86fcb42ebe5248 Mon Sep 17 00:00:00 2001
From: Yannick Warnier <yannick.warnier@beeznest.com>
Date: Mon, 15 Jan 2007 10:33:48 +0100
Subject: [PATCH] [svn r10722] Improved security filtering

---
 main/exercice/hotspot_lang_conversion.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/main/exercice/hotspot_lang_conversion.php b/main/exercice/hotspot_lang_conversion.php
index 91765d9260..6f8f342327 100644
--- a/main/exercice/hotspot_lang_conversion.php
+++ b/main/exercice/hotspot_lang_conversion.php
@@ -5,7 +5,7 @@ $hotspot_lang_file = api_get_path(SYS_LANG_PATH);
 
 if(isset($_GET['lang']))
 {
-	$lang = str_replace('../','',urldecode($_GET['lang']));
+	$lang = str_replace('../','',str_replace('\\0','',urldecode($_GET['lang'])));
 	if(file_exists($hotspot_lang_file . $lang . '/hotspot.inc.php'))
 		$hotspot_lang_file .= $lang . '/hotspot.inc.php';
 	else