Skip to content
Browse files

Fixed issue: Security problems with uploaded files in administration

  • Loading branch information...
1 parent 85d05f5 commit 9b5f845012270c62102d6bd1757056fbc4f12453 @c-schmitz c-schmitz committed Mar 9, 2013
Showing with 1 addition and 1 deletion.
  1. +1 −1 application/controllers/admin/questiongroup.php
View
2 application/controllers/admin/questiongroup.php
@@ -47,7 +47,7 @@ function import()
$importgroup .= "\n";
$sFullFilepath = Yii::app()->getConfig('tempdir') . DIRECTORY_SEPARATOR . randomChars(20);
- $aPathInfo = pathinfo($sFullFilepath);
+ $aPathInfo = pathinfo($_FILES['the_file']['name']);
$sExtension = $aPathInfo['extension'];
if (!@move_uploaded_file($_FILES['the_file']['tmp_name'], $sFullFilepath))

0 comments on commit 9b5f845

Please sign in to comment.
Something went wrong with that request. Please try again.