X-Git-Url: http://koha-dev.rot13.org:8081/gitweb/?a=blobdiff_plain;f=edithelp.pl;h=62b449f4aaca905c03b871a7c5883e041f1fd914;hb=5d6c092921919526ade501facb1220f8a108a08f;hp=de4e9b12c1b53622da96be498f5a49baefcd1f55;hpb=0f92532b52da70bea81babc1c02fdc8fc045024c;p=koha_fer

diff --git a/edithelp.pl b/edithelp.pl
index de4e9b12c1..62b449f4aa 100755
--- a/edithelp.pl
+++ b/edithelp.pl
@@ -65,7 +65,9 @@ my ( $template, $loggedinuser, $cookie ) = get_template_and_user(
 sub _get_filepath ($;$) {
     my $referer = shift;
     $referer =~ /koha\/(.*)\.pl/;
-    my $from = "help/$1.tt";
+    my $file = $1;
+    $file =~ s/[^0-9a-zA-Z_\-\/]*//g;
+    my $from = "help/$file.tt";
     my $htdocs = C4::Context->config('intrahtdocs');
     my ($theme, $lang, $availablethemes) = C4::Templates::themelanguage( $htdocs, $from, "intranet", $input );
 	$debug and print STDERR "help filepath: $htdocs/$theme/$lang/modules/$from";