Craftadoc/clsi
2
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

update sanitizePath regex

Browse Source 
remove accidental inclusion of , and add null char \x00
This commit is contained in:
Brian Gough
2015-02-13 11:28:43 +00:00
parent 1a7500f102
commit f37004cec6
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
app/coffee/RequestParser.coffee
View File

@@ -76,4 +76,4 @@ module.exports = RequestParser =
_sanitizePath: (path) -> _sanitizePath: (path) ->
# See http://php.net/manual/en/function.escapeshellcmd.php # See http://php.net/manual/en/function.escapeshellcmd.php
path.replace(/[\#\&\;\`\|\*\?\~\<\>\^\(\)\[\]\{\}\$\\\,\x0A\xFF]/g, "") path.replace(/[\#\&\;\`\|\*\?\~\<\>\^\(\)\[\]\{\}\$\\\x0A\xFF\x00]/g, "")