diff options
| -rw-r--r-- | engine/lib/input.php | 8 |
1 files changed, 6 insertions, 2 deletions
diff --git a/engine/lib/input.php b/engine/lib/input.php index e5daa70ea..2ddc0e643 100644 --- a/engine/lib/input.php +++ b/engine/lib/input.php @@ -92,15 +92,19 @@ function filter_tags($var) { * @param string $path The path * @return string */ -function sanitise_filepath($path) { +function sanitise_filepath($path, $append_slash = TRUE) { // Convert to correct UNIX paths $path = str_replace('\\', '/', $path); + $path = str_replace('../', '/', $path); // Sort trailing slash $path = trim($path); // rtrim defaults plus / $path = rtrim($path, " \n\t\0\x0B/"); - $path = $path . "/"; + + if ($append_slash) { + $path = $path . '/'; + } return $path; } |