Yet Another Insecure Wordpress Code | NotSoSecure
Package:- wordpress 2.2.2.zip file:/wp-admin/admin- functions.php function validate_file( $file, $allowed_files = '' ) { if ( false !== strpos( $file, './' )) return 1; if (':' == substr( $file, 1, 1 )) return 2; if (!empty ( $allowed_files ) && (!in_array( $file, $allowed_files ) ) ) return 3;