&Runlevel: Good job! Laszlo Systems

dimanche, novembre 19, 2006

Good job! Laszlo Systems

The premier open-source platform for rich internet applications

Update, /laszlo-explorer/source.jsp

String src = request.getParameter("src");
String title = request.getParameter("title");
String fname = src;
// Check if url is in proper subdir of this JSP (la catastrofe)
if (!isValidSubdir(application.getRealPath(src))) {
out.println("invalid path");
return;
}

merci a moi, qd même :P