Skip to content
Permalink
Browse files

SECURITY: Fix Directory Traversal Vulerability.

  • Loading branch information
mrubinsk committed Mar 1, 2020
1 parent 9216d86 commit 8844968890ac57fd0457d902bae302c85b22d566
Showing with 2 additions and 2 deletions.
  1. +1 −1 lib/Block/Bookmarks.php
  2. +1 −1 lib/Block/Mostclicked.php
@@ -68,7 +68,7 @@ protected function _title()
*/
protected function _content()
{
$template = TREAN_TEMPLATES . '/block/' . $this->_params['template'] . '.inc';
$template = TREAN_TEMPLATES . '/block/' . basename($this->_params['template']) . '.inc';

$sortby = 'title';
$sortdir = 0;
@@ -58,7 +58,7 @@ protected function _title()
*/
protected function _content()
{
$template = TREAN_TEMPLATES . '/block/' . $this->_params['template'] . '.inc';
$template = TREAN_TEMPLATES . '/block/' . basename($this->_params['template']) . '.inc';

$html = '';
$bookmarks = $GLOBALS['trean_gateway']->listBookmarks('clicks', 1, 0, $this->_params['rows']);

0 comments on commit 8844968

Please sign in to comment.
You can’t perform that action at this time.