summaryrefslogtreecommitdiffstats
path: root/system/application/models
diff options
context:
space:
mode:
authorFlorian Pritz <bluewind@xssn.at>2010-05-20 13:29:46 +0200
committerFlorian Pritz <bluewind@xssn.at>2010-05-20 13:29:46 +0200
commita647a9e422f73fbb2421e9f396a05230b731bddb (patch)
treecda6ff60890d418d651290db9e4ede98fb0a6570 /system/application/models
parent7d2a4e5d52ed14c5061a8db635df6bd537dcabf4 (diff)
add missing escapeshellarg()
Signed-off-by: Florian Pritz <bluewind@xssn.at>
Diffstat (limited to 'system/application/models')
-rw-r--r--system/application/models/file_mod.php2
1 files changed, 1 insertions, 1 deletions
diff --git a/system/application/models/file_mod.php b/system/application/models/file_mod.php
index 6c35a8738..efb30005a 100644
--- a/system/application/models/file_mod.php
+++ b/system/application/models/file_mod.php
@@ -178,7 +178,7 @@ class File_mod extends Model {
// count(file($file)); isn't
echo shell_exec('/usr/bin/seq 1 $(/usr/bin/wc -l '.escapeshellarg($file).' | /bin/cut -d\ -f1) | sed -r \'s/^(.*)$/<a href="#n\1" class="no" name="n\1" id="n\1">\1<\/a>/g\'');
echo '</pre></td><td class="code"><pre>'."\n";
- echo shell_exec(FCPATH.'scripts/syntax-highlighting.sh '.$filedata['filename'].'.'.$mode.' < '.escapeshellarg($file));
+ echo shell_exec(FCPATH.'scripts/syntax-highlighting.sh '.escapeshellarg($filedata['filename']).'.'.escapeshellarg($mode).' < '.escapeshellarg($file));
echo $this->load->view('file/html_footer', $data, true);
} else {
if ($mode == 'plain') {