diff --git a/modules/backup_restore/restore.php b/modules/backup_restore/restore.php index 3f8ee15..487545e 100644 --- a/modules/backup_restore/restore.php +++ b/modules/backup_restore/restore.php @@ -41,8 +41,7 @@ echo ""; if (isset($_REQUEST['filename'])){ - $filename = escapeshellarg($_REQUEST['filename']); - $filename = substr($filename,1,-1); + $filename = escapeshellcmd($_REQUEST['filename']); $filename = $backup_dir."/".$filename; if(is_file($filename)) { echo "
";