allow ".." in folder names

".." are valid in folder names, only ".." by itself is invalid fix for #18987
author: Individual IT Services <info@individual-it.net> 2015-09-14 10:42:00 +0545
committer: Individual IT Services <info@individual-it.net> 2015-09-14 10:42:00 +0545
commit: f7e66d49fc4e374071d60109337f47d2d102b53a (patch)
tree: 08c9f7b917eb23cbe53cfb63fb4ee95e2415e7fd /apps/files/ajax
parent: c15ba0d6589863e546df2476778fbd305d0c3fdd (diff)
download: nextcloud-server-f7e66d49fc4e374071d60109337f47d2d102b53a.tar.gz
nextcloud-server-f7e66d49fc4e374071d60109337f47d2d102b53a.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/apps/files/ajax/upload.php b/apps/files/ajax/upload.php
index 4bc2ce8bdf3..7ff02d8db8e 100644
--- a/apps/files/ajax/upload.php
+++ b/apps/files/ajax/upload.php
@@ -148,7 +148,7 @@ if ($maxUploadFileSize >= 0 and $totalSize > $maxUploadFileSize) {
 }
 
 $result = array();
-if (strpos($dir, '..') === false) {
+if (\OC\Files\Filesystem::isValidPath($dir) === true) {
 	$fileCount = count($files['name']);
 	for ($i = 0; $i < $fileCount; $i++) {
author	Individual IT Services <info@individual-it.net>	2015-09-14 10:42:00 +0545
committer	Individual IT Services <info@individual-it.net>	2015-09-14 10:42:00 +0545
commit	f7e66d49fc4e374071d60109337f47d2d102b53a (patch)
tree	08c9f7b917eb23cbe53cfb63fb4ee95e2415e7fd /apps/files/ajax
parent	c15ba0d6589863e546df2476778fbd305d0c3fdd (diff)
download	nextcloud-server-f7e66d49fc4e374071d60109337f47d2d102b53a.tar.gz nextcloud-server-f7e66d49fc4e374071d60109337f47d2d102b53a.zip