From ed439142cca39537363372d3aaaf19ca8b9b7d68 Mon Sep 17 00:00:00 2001
From: xevidos <xevidos@gmail.com>
Date: Mon, 11 Mar 2019 10:04:02 -0400
Subject: [PATCH] Added admin only absolute paths for filesystem protection.

---
 components/project/class.project.php | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/components/project/class.project.php b/components/project/class.project.php
index 90bf48b..1497fa8 100755
--- a/components/project/class.project.php
+++ b/components/project/class.project.php
@@ -392,6 +392,11 @@ class Project extends Common {
 						mkdir( WORKSPACE . '/' . $this->path );
 					} else {
 						
+						if( ! is_admin() ) {
+							
+							die( formatJSEND( "error", "Absolute Paths are only allowed for admins" ) );
+						}
+						
 						if ( defined( 'WHITEPATHS' ) ) {
 							
 							$allowed = false;