Fix vulnerable.

app/controllers/archives_controller.rb

@@ -7,7 +7,7 @@ class ArchivesController < ApplicationController
 	def serve_cmap
 		file_name = File.basename(params[:file_name].to_s)
 		extension = File.basename(params[:extension].to_s)
-		serve_path=File.expand_path("../../assets/javascripts/archive/pdf/bcmaps/#{file_name}.#{extension}",__FILE__)
+		serve_path = File.expand_path("../../assets/javascripts/archive/pdf/bcmaps/#{file_name}.#{extension}",__FILE__)
 		if Dir.glob(serve_path).length != 0
 			send_file(serve_path, type: "application/octet-stream")
 		else