Make check for .. more specific.

A `..` anywhere in the classname is invalid.
cakephp · Jul 5, 2013 · c685f6c · c685f6c
1 parent 7607087
commit c685f6c
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/lib/Cake/Core/App.php b/lib/Cake/Core/App.php
@@ -535,7 +535,7 @@ public static function load($className) {
 		if (!isset(self::$_classMap[$className])) {
 			return false;
 		}
-		if (strpos($className, '..')) {
+		if (strpos($className, '..') !== false) {
 			return false;
 		}