From 07ec53838ce6f4fd140b6a67818700a82bf94837 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E5=AF=AE?= <ryo@ryo.ryo>
Date: Sat, 21 Jan 2023 19:59:04 +0900
Subject: [PATCH] Overlooked one thing.

---
 index.php | 1 +
 1 file changed, 1 insertion(+)

diff --git a/index.php b/index.php
index 0a617c6..ca38dca 100644
--- a/index.php
+++ b/index.php
@@ -4,6 +4,7 @@
 
   // Prevent accessing stuff you're not supposed to access.
   $path = (isset($_GET["path"]) ? $_GET["path"] : "");
+  $path = htmlentities($path);
   if ($path == "/") $path = "";
   foreach (explode("/", $path) as $e) { if ($e == "." || $e == ".." || $e == ".git") die("fuck off."); }