Commit 9c69497f authored by Christophe Dumez's avatar Christophe Dumez

- Fixed security hole in ERP5Subversion


git-svn-id: https://svn.erp5.org/repos/public/erp5/trunk@9499 20353a03-c40f-0410-a6d1-a30d3c3de9de
parent b19af512
......@@ -618,7 +618,7 @@ class SubversionTool(BaseTool, UniqueObject, Folder):
def fileHTML(self, business_template, file_path):
""" Display a file content in HTML with syntax highlighting
"""
file_path = self.relativeToAbsolute(file_path, business_template)
file_path = self._getWorkingPath(self.relativeToAbsolute(file_path, business_template))
if os.path.exists(file_path):
if os.path.isdir(file_path):
text = "<span style='font-weight: bold; color: black;'>"+file_path+"</span><hr/>"
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment