diff --git a/modules/boe-module-scorm/src/main/java/com/xboe/module/scorm/cam/load/ZipUtils.java b/modules/boe-module-scorm/src/main/java/com/xboe/module/scorm/cam/load/ZipUtils.java
index bb6ed85a..37bc0b76 100644
--- a/modules/boe-module-scorm/src/main/java/com/xboe/module/scorm/cam/load/ZipUtils.java
+++ b/modules/boe-module-scorm/src/main/java/com/xboe/module/scorm/cam/load/ZipUtils.java
@@ -60,7 +60,7 @@ public class ZipUtils {
     }
 
     public static boolean decompressZip(String zipFilePath, String saveFileDir) {
-        if (saveFileDir.contains("..")) {
+        if (zipFilePath.contains("..") || saveFileDir.contains("..")) {
             throw new SecurityException("输入路径包含不安全的字符");
         }