vrana           Fri Sep 10 09:45:23 2004 EDT

  Modified files:              
    /phpdoc/en/features file-upload.xml 
  Log:
  Security fix by Hartmut
  
http://cvs.php.net/diff.php/phpdoc/en/features/file-upload.xml?r1=1.78&r2=1.79&ty=u
Index: phpdoc/en/features/file-upload.xml
diff -u phpdoc/en/features/file-upload.xml:1.78 phpdoc/en/features/file-upload.xml:1.79
--- phpdoc/en/features/file-upload.xml:1.78     Tue Aug 24 19:02:42 2004
+++ phpdoc/en/features/file-upload.xml  Fri Sep 10 09:45:23 2004
@@ -1,5 +1,5 @@
 <?xml version="1.0" encoding="iso-8859-1"?>
-<!-- $Revision: 1.78 $ -->
+<!-- $Revision: 1.79 $ -->
  <chapter id="features.file-upload">
   <title>Handling file uploads</title>
 
@@ -184,7 +184,7 @@
 // of $_FILES.
 
 $uploaddir = '/var/www/uploads/';
-$uploadfile = $uploaddir . $_FILES['userfile']['name'];
+$uploadfile = $uploaddir . basename($_FILES['userfile']['name']);
 
 print "<pre>";
 if (move_uploaded_file($_FILES['userfile']['tmp_name'], $uploadfile)) {

Reply via email to