diff --git a/e107_files/bbcode/img.bb b/e107_files/bbcode/img.bb
index 1ba3de8db..7c200fdcf 100644
--- a/e107_files/bbcode/img.bb
+++ b/e107_files/bbcode/img.bb
@@ -25,7 +25,7 @@ foreach($imgParms as $k => $v) {
 }
 
 
-if(file_exists(e_IMAGE."newspost_images/".$code_text))
+if((strpos($code_text,'../') === FALSE) && file_exists(e_IMAGE."newspost_images/".$code_text))
 {
 	$code_text = e_IMAGE."newspost_images/".$code_text;
 }