From c1ce0a9e1dfa829148ef00170d3b3c5072c70c40 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Bar=C4=B1=C5=9F=20Soner=20U=C5=9Fakl=C4=B1?=
 <barisusakli@gmail.com>
Date: Thu, 19 Feb 2015 16:37:56 -0500
Subject: [PATCH] closes #2738

---
 src/controllers/uploads.js | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/src/controllers/uploads.js b/src/controllers/uploads.js
index dc0db0591d..58ab3689c1 100644
--- a/src/controllers/uploads.js
+++ b/src/controllers/uploads.js
@@ -5,6 +5,7 @@ var uploadsController = {},
 	fs = require('fs'),
 	path = require('path'),
 	async = require('async'),
+	validator = require('validator'),
 
 	meta = require('../meta'),
 	file = require('../file'),
@@ -117,8 +118,9 @@ function uploadFile(uid, uploadedFile, callback) {
 	if (uploadedFile.size > parseInt(meta.config.maximumFileSize, 10) * 1024) {
 		return callback(new Error('[[error:file-too-big, ' + meta.config.maximumFileSize + ']]'));
 	}
-
-	var filename = 'upload-' + utils.generateUUID() + path.extname(uploadedFile.name);
+	
+	var filename = uploadFile.name || 'upload';
+	filename = validator.escape(filename).substr(0, 255) + '-' + Date.now();
 	file.saveFileToLocal(filename, 'files', uploadedFile.path, function(err, upload) {
 		if (err) {
 			return callback(err);