diff options
| author | Florian Pritz <bluewind@xssn.at> | 2010-05-20 13:29:46 +0200 |
|---|---|---|
| committer | Florian Pritz <bluewind@xssn.at> | 2010-05-20 13:29:46 +0200 |
| commit | a647a9e422f73fbb2421e9f396a05230b731bddb (patch) | |
| tree | cda6ff60890d418d651290db9e4ede98fb0a6570 /system | |
| parent | 7d2a4e5d52ed14c5061a8db635df6bd537dcabf4 (diff) | |
add missing escapeshellarg()
Signed-off-by: Florian Pritz <bluewind@xssn.at>
Diffstat (limited to 'system')
| -rw-r--r-- | system/application/models/file_mod.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/system/application/models/file_mod.php b/system/application/models/file_mod.php index 6c35a8738..efb30005a 100644 --- a/system/application/models/file_mod.php +++ b/system/application/models/file_mod.php @@ -178,7 +178,7 @@ class File_mod extends Model { // count(file($file)); isn't echo shell_exec('/usr/bin/seq 1 $(/usr/bin/wc -l '.escapeshellarg($file).' | /bin/cut -d\ -f1) | sed -r \'s/^(.*)$/<a href="#n\1" class="no" name="n\1" id="n\1">\1<\/a>/g\''); echo '</pre></td><td class="code"><pre>'."\n"; - echo shell_exec(FCPATH.'scripts/syntax-highlighting.sh '.$filedata['filename'].'.'.$mode.' < '.escapeshellarg($file)); + echo shell_exec(FCPATH.'scripts/syntax-highlighting.sh '.escapeshellarg($filedata['filename']).'.'.escapeshellarg($mode).' < '.escapeshellarg($file)); echo $this->load->view('file/html_footer', $data, true); } else { if ($mode == 'plain') { |