summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorFlorian Pritz <bluewind@xinu.at>2013-08-22 18:12:54 +0200
committerFlorian Pritz <bluewind@xinu.at>2013-08-22 18:14:09 +0200
commitb706456847640ce714d537e781ea59587b0f0298 (patch)
treee5c237dd730b40d4913329b54b1fd764674f4ccf
parentf4dd5298d42f2d3dc0e03c6116734e2d90b63cf2 (diff)
Add comment about ID blacklist
Signed-off-by: Florian Pritz <bluewind@xinu.at>
-rw-r--r--application/models/mfile.php2
1 files changed, 2 insertions, 0 deletions
diff --git a/application/models/mfile.php b/application/models/mfile.php
index f992a0891..fe762d954 100644
--- a/application/models/mfile.php
+++ b/application/models/mfile.php
@@ -21,6 +21,8 @@ class Mfile extends CI_Model {
static $id_blacklist = NULL;
if ($id_blacklist == NULL) {
+ // This prevents people from being unable to access their uploads
+ // because of URL rewriting
$id_blacklist = scandir(FCPATH);
$id_blacklist[] = "file";
$id_blacklist[] = "user";