server/lib/classes/system.inc.php
@@ -780,7 +780,7 @@ if(substr($path,0,1) != '/') return false; //* We allow only some characters in the path if(!preg_match('/[a-zA-Z0-9_\.\-]{1,}/',$path)) return false; if(!preg_match('/^\/[a-zA-Z0-9_\/\.\-]{1,}$/',$path)) return false; //* Check path for symlinks $path_parts = explode('/',$path);
