Merge branch 'mc'

d152afda · nanahira · 6da12dbe · 234dbad5 · d152afda
Commit d152afda authored Apr 11, 2020 by nanahira
Hide whitespace changes
Inline Side-by-side

Showing with 1 addition and 1 deletion

ygopro-tournament.js ygopro-tournament.js +1 -1

No files found.
--- a/ygopro-tournament.js
+++ b/ygopro-tournament.js
@@ -129,7 +129,7 @@ var getDecks = function(callback) {
 }
 var delDeck = function (deck_name, callback) {
-    if (deck_name.startsWith("../") || deck_name.contains("/../")) { //security issue
+    if (deck_name.startsWith("../") || deck_name.match(/\/\.\.\//)) { //security issue
        callback("Invalid deck");
    }
    fs.unlink(config.deck_path + deck_name, callback);