diff options
| author | cassiopc <cassiopc@gmail.com> | 2012-10-25 09:26:35 +0000 |
|---|---|---|
| committer | cassiopc <cassiopc@gmail.com> | 2012-10-25 09:26:35 +0000 |
| commit | 4e6518f3fd8885b095a78a7e78e482b42e1cc901 (patch) | |
| tree | 0ff904ec0d1667bc0278237ead736fdf0eebaf50 | |
| parent | 04123f08ebfe7620273af4b71219afb21946494c (diff) | |
| download | boca-4e6518f3fd8885b095a78a7e78e482b42e1cc901.tar.gz boca-4e6518f3fd8885b095a78a7e78e482b42e1cc901.zip | |
avoid spaces in source names
| -rw-r--r-- | boca-1.5.2/src/judge/team.php | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/boca-1.5.2/src/judge/team.php b/boca-1.5.2/src/judge/team.php index 7c204f0..11d03ad 100644 --- a/boca-1.5.2/src/judge/team.php +++ b/boca-1.5.2/src/judge/team.php @@ -38,6 +38,10 @@ if (isset($_FILES["sourcefile"]) && isset($_POST["problem"]) && isset($_POST["Su MSGError("File size exceeds the limit allowed."); ForceLoad($runteam); } + if(strpos($name,' ') === true || strpos($temp,' ') === true) { + MSGError("File name cannot contain spaces."); + ForceLoad($runteam); + } if (!is_uploaded_file($temp) || strlen($name)>100) { IntrusionNotify("file upload problem."); ForceLoad("../index.php"); |