diff --git a/application/service/AppMiniService.php b/application/service/AppMiniService.php
index fd3e110fe..69b670d50 100755
--- a/application/service/AppMiniService.php
+++ b/application/service/AppMiniService.php
@@ -187,9 +187,21 @@ class AppMiniService
         // 初始化
         self::Init($params);
 
+        // 目录处理
+        $suffix = '';
+        if(substr($params['id'], -4) === '.zip')
+        {
+            $name = substr($params['id'], 0, strlen($params['id'])-4);
+            $suffix = '.zip';
+        } else {
+            $name = $params['id'];
+        }
+
+        // 防止路径回溯
+        $path = self::$new_path.DS.htmlentities(str_replace(array('.', '/', '\\'), '', strip_tags($name))).$suffix;
+
         // 删除压缩包
-        $path = self::$new_path.DS.$params['id'];
-        if(substr($path, -4) == '.zip')
+        if($suffix == '.zip')
         {
             $status = \base\FileUtil::UnlinkFile($path);
         } else {
diff --git a/application/service/ThemeService.php b/application/service/ThemeService.php
index c66d1f87f..6f6bf8cff 100755
--- a/application/service/ThemeService.php
+++ b/application/service/ThemeService.php
@@ -174,8 +174,8 @@ class ThemeService
         {
             return DataReturn('模板id有误', -1);
         }
-        // 主题
-        $id = str_replace(array('.', '/', '\\'), '', strip_tags($params['id']));
+        // 防止路径回溯
+        $id = htmlentities(str_replace(array('.', '/', '\\'), '', strip_tags($params['id'])));
         if(empty($id))
         {
             return DataReturn('主题名称有误', -1);