X-Git-Url: http://wagnertech.de/gitweb/gitweb.cgi/kivitendo-erp.git/blobdiff_plain/db96eb0c952d33f9e27f5fb0e72da18fc653a71d..941fb8a11dc91bfd0951272fd4d04736936980b2:/SL/Form.pm

diff --git a/SL/Form.pm b/SL/Form.pm
index b7b76e4c2..a9c7225ea 100644
--- a/SL/Form.pm
+++ b/SL/Form.pm
@@ -939,12 +939,12 @@ sub parse_template {
     # check for <%include filename%>
     if (/\s*<%include /) {
 
-      # get the filename
+      # get the directory/filename
       chomp $var;
       $var =~ s/\s*<%include (.+?)%>/$1/;
 
-      # mangle filename
-      $var =~ s/(\/|\.\.)//g;
+      # mangle filename on basedir
+      $var =~ s/^(\/|\.\.)//g;
 
       # prevent the infinite loop!
       next if ($self->{"$var"});