Changeset 22863


Ignore:
Timestamp:
2013/06/19 16:59:50 (11 years ago)
Author:
m_uehara
Message:

#2266 入力チェック修正

File:
1 edited

Legend:

Unmodified
Added
Removed

  • branches/version-2_12-dev/data/class/pages/LC_Page_ResizeImage.php

    r22796 r22863  
    106106     */ 
    107107    function lfCheckFileName() { 
    108         //$pattern = '|^[0-9]+_[0-9a-z]+\.[a-z]{3}$|'; 
    109         $pattern = '|\./|'; 
    110108        $file    = trim($_GET['image']); 
    111         if (preg_match_all($pattern, $file, $matches)) { 
     109        if (!preg_match("/^[[:alnum:]_\.-]+$/i", $file)) { 
    112110            return false; 
    113111        } else { 
Note: See TracChangeset for help on using the changeset viewer.