From 4666bd8307a5b2716d6e82c3bd47dcd12994b092 Mon Sep 17 00:00:00 2001 From: pjmattal Date: Thu, 23 Jun 2005 13:02:29 +0000 Subject: added patch from Jurgen (thanks!) --- web/html/pkgsubmit.php | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/web/html/pkgsubmit.php b/web/html/pkgsubmit.php index 560d972..ca1bf9f 100644 --- a/web/html/pkgsubmit.php +++ b/web/html/pkgsubmit.php @@ -164,8 +164,8 @@ if ($_COOKIE["AURSID"]) { } } - $shcmd = "/bin/sh -c 'mv ".$upload_file." ".$INCOMING_DIR.$pkg_name; - $shcmd.= "/".$_FILES["pfile"]["name"]."'"; + $shcmd = "/bin/mv ".$upload_file." "; + $shcmd.= escapeshellarg($INCOMING_DIR.$pkg_name."/".$_FILES["pfile"]["name"]); @exec($shcmd); # if no error, get list of directory contents and process PKGBUILD -- cgit v1.2.3-70-g09d2