iarv/znc
1
0
Fork 0
mirror of https://github.com/znc/znc.git synced 2026-05-03 03:52:33 +02:00
Code Issues Packages Projects Releases Wiki Activity

Don't allow .. in GET

Browse Source 
git-svn-id: https://znc.svn.sourceforge.net/svnroot/znc/trunk@596 726aef4b-f618-498e-8847-2d620e286838
This commit is contained in:
prozacx
2006-01-07 06:27:03 +00:00
parent 8e52d497bd
commit a45aa54748
1 changed files with 5 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
Client.cpp
View File

@@ -860,6 +860,11 @@ void CClient::UserCommand(const CString& sLine) {
return;
}
if (sFile.find("..") != CString::npos) {
PutStatus("Illegal path.");
return;
}
if (m_pUser) {
m_pUser->SendFile(GetNick(), sFile);
}