diff options
| author | Joas Schilling <nickvergessen@gmx.de> | 2010-02-17 12:49:05 +0000 |
|---|---|---|
| committer | Joas Schilling <nickvergessen@gmx.de> | 2010-02-17 12:49:05 +0000 |
| commit | c0e9bc51265193fa495c0a6ae8b62273b5e30ec7 (patch) | |
| tree | 046dc12862dca637f3ef54389b535fef8c9679a0 /phpBB | |
| parent | e1ae09a7873817f37ef89b21985fd40822103ecc (diff) | |
| download | forums-c0e9bc51265193fa495c0a6ae8b62273b5e30ec7.tar forums-c0e9bc51265193fa495c0a6ae8b62273b5e30ec7.tar.gz forums-c0e9bc51265193fa495c0a6ae8b62273b5e30ec7.tar.bz2 forums-c0e9bc51265193fa495c0a6ae8b62273b5e30ec7.tar.xz forums-c0e9bc51265193fa495c0a6ae8b62273b5e30ec7.zip | |
Bug #57795 - [Fix] Restrict search for language/../iso.txt to folders.
Authorised by: bantu
git-svn-id: file:///svn/phpbb/branches/phpBB-3_0_0@10496 89ea8834-ac86-4346-8a33-228a782c2dd0
Diffstat (limited to 'phpBB')
| -rw-r--r-- | phpBB/docs/CHANGELOG.html | 1 | ||||
| -rw-r--r-- | phpBB/includes/acp/acp_language.php | 5 |
2 files changed, 6 insertions, 0 deletions
diff --git a/phpBB/docs/CHANGELOG.html b/phpBB/docs/CHANGELOG.html index bc692519bd..85cbb47d3c 100644 --- a/phpBB/docs/CHANGELOG.html +++ b/phpBB/docs/CHANGELOG.html @@ -171,6 +171,7 @@ <li>[Fix] Allow convertors to read in configuration from files. (Bug #57265 - Patch by Dicky)</li> <li>[Fix] Fix problems with firebird by no longer using 'count' as a column alias. (Bug #57455)</li> <li>[Fix] Small language correction for the FAQ page. (Bug #57825)</li> + <li>[Fix] Restrict search for language/../iso.txt to folders. (Bug #57795)</li> <li>[Change] Move redirect into a hidden field to avoid issues with mod_security. (Bug #54145)</li> <li>[Change] Log activation through inactive users ACP. (Bug #30145)</li> <li>[Change] Send time of last item instead of current time in ATOM Feeds. (Bug #53305)</li> diff --git a/phpBB/includes/acp/acp_language.php b/phpBB/includes/acp/acp_language.php index 8ca45a27f6..fedae6fe67 100644 --- a/phpBB/includes/acp/acp_language.php +++ b/phpBB/includes/acp/acp_language.php @@ -1120,6 +1120,11 @@ class acp_language { while (($file = readdir($dp)) !== false) { + if (!is_dir($phpbb_root_path . 'language/' . $file)) + { + continue; + } + if ($file[0] != '.' && file_exists("{$phpbb_root_path}language/$file/iso.txt")) { if (!in_array($file, $installed)) |