From 6ec1ef49d95287b39b6bd9cf77b773cd54c491ec Mon Sep 17 00:00:00 2001
From: Juan Basso <jrbasso@gmail.com>
Date: Sun, 3 Jan 2010 19:14:31 -0200
Subject: [PATCH] Added some verification to avoid exploits.

---
 models/behaviors/meio_upload.php | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/models/behaviors/meio_upload.php b/models/behaviors/meio_upload.php
index b2b7c41..6404d0a 100644
--- a/models/behaviors/meio_upload.php
+++ b/models/behaviors/meio_upload.php
@@ -1055,6 +1055,9 @@ function _createFolders($dir, $thumbsizes) {
  **/
 	function _copyFileFromTemp($tmpName, $saveAs) {
 		$results = true;
+		if (!is_uploaded_file($tmpName)) {
+			return false;
+		}
 		$file = new File($tmpName, $saveAs);
 		$temp = new File($saveAs, true);
 		if (!$temp->write($file->read())) {