From 713d60b36c952af50d7228539342388ac3d799f5 Mon Sep 17 00:00:00 2001
From: Janusz Dobrowolski <janusz@frontaccounting.eu>
Date: Tue, 7 Dec 2010 08:02:02 +0000
Subject: [PATCH] Fixed uploaded file name test

---
 admin/backups.php | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/admin/backups.php b/admin/backups.php
index 63200f6a..2193486b 100644
--- a/admin/backups.php
+++ b/admin/backups.php
@@ -149,9 +149,9 @@ if (get_post('deldump')) {
 if (get_post('upload'))
 {
 	$tmpname = $_FILES['uploadfile']['tmp_name'];
-	$fname = clean_file_name($_FILES['uploadfile']['name']);
+	$fname = trim(basename($_FILES['uploadfile']['name']));
 
-	if (!preg_match("/.sql(.zip|.gz)?$/", $fname))
+	if (!preg_match("/\.sql(\.zip|\.gz)?$/", $fname))
 		display_error(_("You can only upload *.sql backup files"));
 	elseif (is_uploaded_file($tmpname)) {
 		rename($tmpname, BACKUP_PATH . $fname);
-- 
2.30.2