diff options
| author | Marc Alexander <admin@m-a-styles.de> | 2014-11-01 22:02:47 +0100 |
|---|---|---|
| committer | Marc Alexander <admin@m-a-styles.de> | 2014-11-01 22:43:28 +0100 |
| commit | f534503a66fc81e7bbe589b883167d2343871134 (patch) | |
| tree | 79f1dd215fbaa21c009daae98b6e7065b11ae14a /phpBB/phpbb | |
| parent | 28ef238a5ccd41833de364ab14ff21a254a9beaf (diff) | |
| download | forums-f534503a66fc81e7bbe589b883167d2343871134.tar forums-f534503a66fc81e7bbe589b883167d2343871134.tar.gz forums-f534503a66fc81e7bbe589b883167d2343871134.tar.bz2 forums-f534503a66fc81e7bbe589b883167d2343871134.tar.xz forums-f534503a66fc81e7bbe589b883167d2343871134.zip | |
[ticket/security-164] Correctly format page_name
SECURITY-164
Diffstat (limited to 'phpBB/phpbb')
| -rw-r--r-- | phpBB/phpbb/session.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/phpBB/phpbb/session.php b/phpBB/phpbb/session.php index 477e91efd6..14b4c63207 100644 --- a/phpBB/phpbb/session.php +++ b/phpBB/phpbb/session.php @@ -87,7 +87,7 @@ class session $symfony_request_path = $phpbb_filesystem->clean_path($symfony_request->getPathInfo()); if ($symfony_request_path !== '/') { - $page_name .= $symfony_request_path; + $page_name .= str_replace('%2F', '/', urlencode($symfony_request_path)); } // current directory within the phpBB root (for example: adm) |