Author: nextgens
Date: 2008-05-08 09:19:47 +0000 (Thu, 08 May 2008)
New Revision: 19834
Modified:
trunk/website/includes/common.inc.php
Log:
website: fix another security problem with the website
Modified: trunk/website/includes/common.inc.php
===================================================================
--- trunk/website/includes/common.inc.php 2008-05-08 08:35:33 UTC (rev
19833)
+++ trunk/website/includes/common.inc.php 2008-05-08 09:19:47 UTC (rev
19834)
@@ -113,7 +113,7 @@
}
if (isset($_REQUEST["page"])) {
- $page = htmlentities($_REQUEST["page"]);
+ $page = escapeshellcmd(htmlentities($_REQUEST["page"]));
$file = selectPage($lang_q, $page);
if(!file_exists($file) )
{
