From 496d06443a9c639ca40ce7524638fd31ce01ba78 Mon Sep 17 00:00:00 2001
From: skodak <skodak>
Date: Tue, 11 Jul 2006 13:19:52 +0000
Subject: [PATCH] better cleaning of $file parameter SC#276; merged from
 MOODLE_16_STABLE

---
 help.php | 6 +-----
 1 file changed, 1 insertion(+), 5 deletions(-)

diff --git a/help.php b/help.php
index 3d5b8dbb300..e24b6160877 100644
--- a/help.php
+++ b/help.php
@@ -16,17 +16,13 @@
 
     require_once('config.php');
 
-    $file   = optional_param('file', '', PARAM_CLEAN);
+    $file   = optional_param('file', '', PARAM_PATH);
     $text   = optional_param('text', 'No text to display', PARAM_CLEAN);
     $module = optional_param('module', 'moodle', PARAM_ALPHAEXT);
     $forcelang = optional_param('forcelang', '', PARAM_ALPHAEXT);
 
     print_header();
 
-    if (detect_munged_arguments($module .'/'. $file)) {
-        error('Filenames contain illegal characters!');
-    }
-
     print_simple_box_start('center', '96%');
 
     $helpfound = false;