summaryrefslogtreecommitdiff
path: root/LedgerSMB/Form.pm
diff options
context:
space:
mode:
Diffstat (limited to 'LedgerSMB/Form.pm')
-rwxr-xr-xLedgerSMB/Form.pm3
1 files changed, 3 insertions, 0 deletions
diff --git a/LedgerSMB/Form.pm b/LedgerSMB/Form.pm
index 4b30c317..caa9857b 100755
--- a/LedgerSMB/Form.pm
+++ b/LedgerSMB/Form.pm
@@ -575,6 +575,9 @@ sub parse_template {
$self->{images} = "${LedgerSMB::Sysconfig::images}/$self->{templates}";
if ($self->{language_code}) {
+ if ($self->{language_code} =~ /(\.\.|\/|\*)/){
+ $self->error("Invalid Language Code");
+ }
if (-f "$self->{templates}/$self->{language_code}/$self->{IN}") {
open(IN, '<', "$self->{templates}/$self->{language_code}/$self->{IN}") or $self->error("$self->{IN} : $!");
generated by cgit v1.2.3 (git 2.46.0) at 2025-02-23 11:05:08 +0000