aboutsummaryrefslogtreecommitdiff
path: root/webserver
diff options
context:
space:
mode:
Diffstat (limited to 'webserver')
-rw-r--r--webserver/src/main/java/fi/iki/elonen/SimpleWebServer.java2
1 files changed, 1 insertions, 1 deletions
diff --git a/webserver/src/main/java/fi/iki/elonen/SimpleWebServer.java b/webserver/src/main/java/fi/iki/elonen/SimpleWebServer.java
index a2396e8..8cae9a3 100644
--- a/webserver/src/main/java/fi/iki/elonen/SimpleWebServer.java
+++ b/webserver/src/main/java/fi/iki/elonen/SimpleWebServer.java
@@ -398,7 +398,7 @@ public class SimpleWebServer extends NanoHTTPD {
}
// Prohibit getting out of current directory
- if (uri.startsWith("src/main") || uri.endsWith("src/main") || uri.contains("../")) {
+ if (uri.contains("../")) {
return getForbiddenResponse("Won't serve ../ for security reasons.");
}
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-13 01:04:17 +0000