diff options
author | Florian Pritz <bluewind@xinu.at> | 2013-08-22 18:12:54 +0200 |
---|---|---|
committer | Florian Pritz <bluewind@xinu.at> | 2013-08-22 18:14:09 +0200 |
commit | b706456847640ce714d537e781ea59587b0f0298 (patch) | |
tree | e5c237dd730b40d4913329b54b1fd764674f4ccf | |
parent | f4dd5298d42f2d3dc0e03c6116734e2d90b63cf2 (diff) |
Add comment about ID blacklist
Signed-off-by: Florian Pritz <bluewind@xinu.at>
-rw-r--r-- | application/models/mfile.php | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/application/models/mfile.php b/application/models/mfile.php index f992a0891..fe762d954 100644 --- a/application/models/mfile.php +++ b/application/models/mfile.php @@ -21,6 +21,8 @@ class Mfile extends CI_Model { static $id_blacklist = NULL; if ($id_blacklist == NULL) { + // This prevents people from being unable to access their uploads + // because of URL rewriting $id_blacklist = scandir(FCPATH); $id_blacklist[] = "file"; $id_blacklist[] = "user"; |