Fixed uploaded file name test

author Janusz Dobrowolski <janusz@frontaccounting.eu>

Tue, 7 Dec 2010 08:02:02 +0000 (08:02 +0000)

committer Janusz Dobrowolski <janusz@frontaccounting.eu>

Tue, 7 Dec 2010 08:02:02 +0000 (08:02 +0000)
author Janusz Dobrowolski <janusz@frontaccounting.eu>
Tue, 7 Dec 2010 08:02:02 +0000 (08:02 +0000)
committer Janusz Dobrowolski <janusz@frontaccounting.eu>
Tue, 7 Dec 2010 08:02:02 +0000 (08:02 +0000)
diff --git a/admin/backups.php b/admin/backups.php

index 63200f6a73fb6b89795df0ec2204d3632d77a69d..2193486ba9210d22bf8f5dc0add07e2e5874fa1b 100644 (file)
--- a/admin/backups.php
+++ b/admin/backups.php
@@ -149,9 +149,9 @@ if (get_post('deldump')) {
  if (get_post('upload'))
  {
         $tmpname = $_FILES['uploadfile']['tmp_name'];
-       $fname = clean_file_name($_FILES['uploadfile']['name']);
+       $fname = trim(basename($_FILES['uploadfile']['name']));
  
-       if (!preg_match("/.sql(.zip|.gz)?$/", $fname))
+       if (!preg_match("/\.sql(\.zip|\.gz)?$/", $fname))
                 display_error(_("You can only upload *.sql backup files"));
         elseif (is_uploaded_file($tmpname)) {
                 rename($tmpname, BACKUP_PATH . $fname);
author	Janusz Dobrowolski <janusz@frontaccounting.eu>
	Tue, 7 Dec 2010 08:02:02 +0000 (08:02 +0000)
committer	Janusz Dobrowolski <janusz@frontaccounting.eu>
	Tue, 7 Dec 2010 08:02:02 +0000 (08:02 +0000)