From 4532cd14b00413f12a630a4ab1dbe038a005080e Mon Sep 17 00:00:00 2001 From: Brian Gough Date: Fri, 13 Feb 2015 11:28:43 +0000 Subject: [PATCH] update sanitizePath regex remove accidental inclusion of , and add null char \x00 --- services/clsi/app/coffee/RequestParser.coffee | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/services/clsi/app/coffee/RequestParser.coffee b/services/clsi/app/coffee/RequestParser.coffee index d9a2e9bbe4..53268103a2 100644 --- a/services/clsi/app/coffee/RequestParser.coffee +++ b/services/clsi/app/coffee/RequestParser.coffee @@ -76,4 +76,4 @@ module.exports = RequestParser = _sanitizePath: (path) -> # See http://php.net/manual/en/function.escapeshellcmd.php - path.replace(/[\#\&\;\`\|\*\?\~\<\>\^\(\)\[\]\{\}\$\\\,\x0A\xFF]/g, "") \ No newline at end of file + path.replace(/[\#\&\;\`\|\*\?\~\<\>\^\(\)\[\]\{\}\$\\\x0A\xFF\x00]/g, "")