Joxn wrote: > if( eregi("..", $path) ) { > exit; > } This should be: if( (!empty($path)) && (strstr($path, "..")) ) { exit; } bye Joxn -- || //\\ \\// |\\|| :: joxn at vernum.com :: \\|| \\// //\\ ||\\| :: 8053703 ::