From a5e4fd4ada85cdcfd101ebb8c33c6dee7e6ff5b3 Mon Sep 17 00:00:00 2001 From: Jaidyn Lev Date: Mon, 12 Nov 2018 07:50:25 -0600 Subject: [PATCH] More chars to death_list --- resources/library/sanitization.php | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/resources/library/sanitization.php b/resources/library/sanitization.php index c27a0a7..2214880 100644 --- a/resources/library/sanitization.php +++ b/resources/library/sanitization.php @@ -5,7 +5,8 @@ // Sanitize a filename by replacing common suspicious characters with "_". function sanitize_filename($filename) { - $death_characters = array(" ", ",", "<", ">", "/", "\\", "%", "$", "^"); + $death_characters = array(" ", ",", "<", ">", "/", "\\", "\"", "\'", + "%", "$", "^"); $death_filetypes = array(".php", ".sh", ".lisp", ".cl", ".cgi", ".pl"); $sanitized_filename = str_replace($death_characters, "_", $filename);