fix impossibility remove file with two dots

tolanych · tolanych · commit 6fc582c121b0 · 2019-02-09T23:11:41.000+03:00
diff --git a/core/model/modx/processors/browser/file/create.class.php b/core/model/modx/processors/browser/file/create.class.php
@@ -33,7 +33,7 @@ public function process() {
         $directory = ltrim(strip_tags(preg_replace('/[\.]{2,}/', '', htmlspecialchars($directory))),'/');
 
         $name = $this->getProperty('name');
-        $name = ltrim(strip_tags(preg_replace('/[\.]{2,}/', '', htmlspecialchars($name))),'/');
+        $name = ltrim(strip_tags(htmlspecialchars($name)),'/');
 
         $loaded = $this->getSource();
         if (!($this->source instanceof modMediaSource)) {
diff --git a/core/model/modx/processors/browser/file/remove.class.php b/core/model/modx/processors/browser/file/remove.class.php
@@ -33,7 +33,9 @@ public function process() {
         if (empty($file)) {
             return $this->modx->error->failure($this->modx->lexicon('file_err_ns'));
         }
-        $file = preg_replace('/[\.]{2,}/', '', $file);
+        $directory = preg_replace('/[\.]{2,}/', '', htmlspecialchars(pathinfo($file, PATHINFO_DIRNAME)));
+        $name = htmlspecialchars(pathinfo($file, PATHINFO_BASENAME));
+        $path = $directory.$name;
 
         $loaded = $this->getSource();
         if (!($this->source instanceof modMediaSource)) {
