diff --git a/Client.cpp b/Client.cpp
index 46d1e66f..aa9d55cc 100644
--- a/Client.cpp
+++ b/Client.cpp
@@ -860,6 +860,11 @@ void CClient::UserCommand(const CString& sLine) {
 			return;
 		}
 
+		if (sFile.find("..") != CString::npos) {
+			PutStatus("Illegal path.");
+			return;
+		}
+
 		if (m_pUser) {
 			m_pUser->SendFile(GetNick(), sFile);
 		}