From 8d57eba175e45813a632320874c7a4239d01a0fb Mon Sep 17 00:00:00 2001 From: Laurent Destailleur Date: Sun, 29 Oct 2006 23:18:52 +0000 Subject: [PATCH] Fix: Fichiers joint sur facture fournisseur --- htdocs/lib/functions.inc.php | 7 +++++-- 1 file changed, 5 insertions(+), 2 deletions(-) diff --git a/htdocs/lib/functions.inc.php b/htdocs/lib/functions.inc.php index 2715ba29794..4525f8172f1 100644 --- a/htdocs/lib/functions.inc.php +++ b/htdocs/lib/functions.inc.php @@ -1249,9 +1249,12 @@ function doliMoveFileUpload($src_file, $dest_file) { $file_name = $dest_file; - if (substr($file_name, strlen($file_name) -3 , 3) == 'php') + // On renomme les fichiers avec extentio executable car si on a mis le rep + // documents dans un rep de la racine web (pas bien), cela permet d'executer + // du code a la demande. + if (eregi('\.php|\.pl|\.cgi$',$file_name)) { - $file_name = $dest_file . ".txt"; + $file_name.= '.txt'; } return move_uploaded_file($src_file, $file_name);