fanbinit/rhymix
1
0
Fork 0
mirror of https://github.com/Lastorder-DC/rhymix.git synced 2026-01-05 17:51:40 +09:00
Code Issues Projects Releases Packages Wiki Activity

Merge branch 'security/pollskin' into develop

Browse source
This commit is contained in:
Kijin Sung 2022-07-04 00:46:36 +09:00
commit 6e3c9a7c0e
6 changed files with 42 additions and 22 deletions
Download patch file Download diff file Expand all files Collapse all files

1
classes/template/TemplateHandler.class.php
View file

@ -93,6 +93,7 @@ class TemplateHandler
{
// verify arguments
$tpl_path = trim(preg_replace('@^' . preg_quote(\RX_BASEDIR, '@') . '|\./@', '', str_replace('\\', '/', $tpl_path)), '/') . '/';
$tpl_path = preg_replace('/[\{\}\(\)\[\]<>\$\'"]/', '', $tpl_path);
if($tpl_path === '/')
{
$tpl_path = '';