refined uw security patch

src/options_highlight.php

@@ -78,7 +78,7 @@
          echo "<nobr><small>[<a href=\"options_highlight.php?action=edit&theid=$i\">" . _("Edit") . "</a>]&nbsp;[<a href=\"options_highlight.php?action=delete&theid=$i\">"._("Delete")."</a>]</small></nobr>\n";
          echo '   </td>';
          echo '   <td bgcolor="' . $message_highlight_list[$i]['color'] . "\">\n";
-         echo '      ' . $message_highlight_list[$i]['name'] . '&nbsp';
+         echo '      ' . $message_highlight_list[$i]['name'] . '&nbsp;';
          echo "   </td>\n";
          echo '   <td bgcolor="' . $message_highlight_list[$i]['color'] . "\">\n";
          echo '      '.$message_highlight_list[$i]['match_type'].' = ' . $message_highlight_list[$i]['value'];

src/right_main.php

@@ -81,7 +81,7 @@
    }
 
    // compensate for the UW vulnerability
-   if ($imap_server_type == 'uw' && strstr($mailbox, '../')) {
+   if ($imap_server_type == 'uw' && strstr($mailbox, '/')) {
       $mailbox = 'INBOX';
    }