SECURITY: prevent directory traversal vulnerability.

horde · Jan 4, 2019 · f5fc41e · f5fc41e
1 parent 4ad07d7
commit f5fc41e
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/lib/Horde/Form/Type.php b/lib/Horde/Form/Type.php
@@ -1205,7 +1205,7 @@ function _getUpload(&$vars, &$var)
             /* Get the temp file if already one uploaded, otherwise create a
              * new temporary file. */
             if (!empty($upload['img']['file'])) {
-                $tmp_file = Horde::getTempDir() . '/' . $upload['img']['file'];
+                $tmp_file = Horde::getTempDir() . '/' . basename($upload['img']['file']);
             } else {
                 $tmp_file = Horde::getTempFile('Horde', false);
             }