diff --git a/app/edit/file_read.php b/app/edit/file_read.php
index f9b82139b8..58acdf3bcb 100644
--- a/app/edit/file_read.php
+++ b/app/edit/file_read.php
@@ -103,7 +103,7 @@
 	$path_prefix = substr($path_array['dirname'], 0, strlen($edit_directory));
 
 //validate the path
-	if ($path_prefix == $edit_directory) {
+	if (realpath($path_prefix) == realpath($edit_directory)) {
 
 		//get the contents of the file
 		$handle = fopen($file_name, "r");