mirror/php-tinyfilemanager
1
0
Fork 0
mirror of https://github.com/prasathmani/tinyfilemanager.git synced 2025-07-29 21:10:41 +02:00
Code Issues Releases Wiki Activity

Fix Security related issues

Browse Source
This commit is contained in:
Prasath Mani
2022-11-20 16:59:29 +05:30
parent df80b73436
commit f8cedbcf59
2 changed files with 84 additions and 87 deletions
Download Patch File Download Diff File Expand all files Collapse all files

29
tinyfilemanager.php
View File

@@ -3,7 +3,7 @@
$CONFIG = '{"lang":"en","error_reporting":false,"show_hidden":false,"hide_Cols":false,"theme":"light"}'; $CONFIG = '{"lang":"en","error_reporting":false,"show_hidden":false,"hide_Cols":false,"theme":"light"}';
/** /**
* H3K | Tiny File Manager V2.5.0 * H3K | Tiny File Manager V2.5.1
* @author Prasath Mani | CCP Programmers * @author Prasath Mani | CCP Programmers
* @email ccpprogrammers@gmail.com * @email ccpprogrammers@gmail.com
* @github https://github.com/prasathmani/tinyfilemanager * @github https://github.com/prasathmani/tinyfilemanager
@@ -11,7 +11,7 @@ $CONFIG = '{"lang":"en","error_reporting":false,"show_hidden":false,"hide_Cols":
*/ */
//TFM version //TFM version
define('VERSION', '2.5.0'); define('VERSION', '2.5.1');
//Application Title //Application Title
define('APP_TITLE', 'Tiny File Manager'); define('APP_TITLE', 'Tiny File Manager');
@@ -471,7 +471,7 @@ if (isset($_POST['ajax'], $_POST['token']) && !FM_READONLY) {
// backup files // backup files
if (isset($_POST['type']) && $_POST['type'] == "backup" && !empty($_POST['file'])) { if (isset($_POST['type']) && $_POST['type'] == "backup" && !empty($_POST['file'])) {
$fileName = $_POST['file']; $fileName = fm_clean_path($_POST['file']);
$fullPath = FM_ROOT_PATH . '/'; $fullPath = FM_ROOT_PATH . '/';
if (!empty($_POST['path'])) { if (!empty($_POST['path'])) {
$relativeDirPath = fm_clean_path($_POST['path']); $relativeDirPath = fm_clean_path($_POST['path']);
@@ -795,6 +795,7 @@ if (isset($_POST['file'], $_POST['copy_to'], $_POST['finish'], $_POST['token'])
if (is_array($files) && count($files)) { if (is_array($files) && count($files)) {
foreach ($files as $f) { foreach ($files as $f) {
if ($f != '') { if ($f != '') {
$f = fm_clean_path($f);
// abs path from // abs path from
$from = $path . '/' . $f; $from = $path . '/' . $f;
// abs path to // abs path to
@@ -893,6 +894,7 @@ if (!empty($_FILES) && !FM_READONLY) {
$override_file_name = false; $override_file_name = false;
$chunkIndex = $_POST['dzchunkindex']; $chunkIndex = $_POST['dzchunkindex'];
$chunkTotal = $_POST['dztotalchunkcount']; $chunkTotal = $_POST['dztotalchunkcount'];
$fullPathInput = fm_clean_path($_REQUEST['fullpath']);
$f = $_FILES; $f = $_FILES;
$path = FM_ROOT_PATH; $path = FM_ROOT_PATH;
@@ -914,7 +916,7 @@ if (!empty($_FILES) && !FM_READONLY) {
$ext = pathinfo($filename, PATHINFO_FILENAME) != '' ? strtolower(pathinfo($filename, PATHINFO_EXTENSION)) : ''; $ext = pathinfo($filename, PATHINFO_FILENAME) != '' ? strtolower(pathinfo($filename, PATHINFO_EXTENSION)) : '';
$isFileAllowed = ($allowed) ? in_array($ext, $allowed) : true; $isFileAllowed = ($allowed) ? in_array($ext, $allowed) : true;
if(!fm_isvalid_filename($filename) && !fm_isvalid_filename($_REQUEST['fullpath'])) { if(!fm_isvalid_filename($filename) && !fm_isvalid_filename($fullPathInput)) {
$response = array ( $response = array (
'status' => 'error', 'status' => 'error',
'info' => "Invalid File name!", 'info' => "Invalid File name!",
@@ -924,12 +926,12 @@ if (!empty($_FILES) && !FM_READONLY) {
$targetPath = $path . $ds; $targetPath = $path . $ds;
if ( is_writable($targetPath) ) { if ( is_writable($targetPath) ) {
$fullPath = $path . '/' . basename($_REQUEST['fullpath']); $fullPath = $path . '/' . basename($fullPathInput);
$folder = substr($fullPath, 0, strrpos($fullPath, "/")); $folder = substr($fullPath, 0, strrpos($fullPath, "/"));
if(file_exists ($fullPath) && !$override_file_name && !$chunks) { if(file_exists ($fullPath) && !$override_file_name && !$chunks) {
$ext_1 = $ext ? '.'.$ext : ''; $ext_1 = $ext ? '.'.$ext : '';
$fullPath = $path . '/' . basename($_REQUEST['fullpath'], $ext_1) .'_'. date('ymdHis'). $ext_1; $fullPath = $path . '/' . basename($fullPathInput, $ext_1) .'_'. date('ymdHis'). $ext_1;
} }
if (!is_dir($folder)) { if (!is_dir($folder)) {
@@ -1025,7 +1027,7 @@ if (isset($_POST['group'], $_POST['delete'], $_POST['token']) && !FM_READONLY) {
if (is_array($files) && count($files)) { if (is_array($files) && count($files)) {
foreach ($files as $f) { foreach ($files as $f) {
if ($f != '') { if ($f != '') {
$new_path = $path . '/' . $f; $new_path = fm_clean_path($path . '/' . $f);
if (!fm_rdelete($new_path)) { if (!fm_rdelete($new_path)) {
$errors++; $errors++;
} }
@@ -1590,7 +1592,6 @@ if (isset($_GET['help'])) {
// file viewer // file viewer
if (isset($_GET['view'])) { if (isset($_GET['view'])) {
$file = $_GET['view']; $file = $_GET['view'];
$quickView = (isset($_GET['quickView']) && $_GET['quickView'] == 1) ? true : false;
$file = fm_clean_path($file, false); $file = fm_clean_path($file, false);
$file = str_replace('/', '', $file); $file = str_replace('/', '', $file);
if ($file == '' || !is_file($path . '/' . $file) || in_array($file, $GLOBALS['exclude_items'])) { if ($file == '' || !is_file($path . '/' . $file) || in_array($file, $GLOBALS['exclude_items'])) {
@@ -1598,10 +1599,8 @@ if (isset($_GET['view'])) {
$FM_PATH=FM_PATH; fm_redirect(FM_SELF_URL . '?p=' . urlencode($FM_PATH)); $FM_PATH=FM_PATH; fm_redirect(FM_SELF_URL . '?p=' . urlencode($FM_PATH));
} }
if(!$quickView) {
fm_show_header(); // HEADER fm_show_header(); // HEADER
fm_show_nav_path(FM_PATH); // current path fm_show_nav_path(FM_PATH); // current path
}
$file_url = FM_ROOT_URL . fm_convert_win((FM_PATH != '' ? '/' . FM_PATH : '') . '/' . $file); $file_url = FM_ROOT_URL . fm_convert_win((FM_PATH != '' ? '/' . FM_PATH : '') . '/' . $file);
$file_path = $path . '/' . $file; $file_path = $path . '/' . $file;
@@ -1648,7 +1647,6 @@ if (isset($_GET['view'])) {
?> ?>
<div class="row"> <div class="row">
<div class="col-12"> <div class="col-12">
<?php if(!$quickView) { ?>
<p class="break-word"><b><?php echo $view_title ?> "<?php echo fm_enc(fm_convert_win($file)) ?>"</b></p> <p class="break-word"><b><?php echo $view_title ?> "<?php echo fm_enc(fm_convert_win($file)) ?>"</b></p>
<p class="break-word"> <p class="break-word">
<strong>Full path:</strong> <?php echo fm_enc(fm_convert_win($file_path)) ?><br> <strong>Full path:</strong> <?php echo fm_enc(fm_convert_win($file_path)) ?><br>
@@ -1723,7 +1721,6 @@ if (isset($_GET['view'])) {
<b class="ms-2"><a href="?p=<?php echo urlencode(FM_PATH) ?>"><i class="fa fa-chevron-circle-left go-back"></i> <?php echo lng('Back') ?></a></b> <b class="ms-2"><a href="?p=<?php echo urlencode(FM_PATH) ?>"><i class="fa fa-chevron-circle-left go-back"></i> <?php echo lng('Back') ?></a></b>
</div> </div>
<?php <?php
}
if($is_onlineViewer) { if($is_onlineViewer) {
if($online_viewer == 'google') { if($online_viewer == 'google') {
echo '<iframe src="https://docs.google.com/viewer?embedded=true&hl=en&url=' . fm_enc($file_url) . '" frameborder="no" style="width:100%;min-height:460px"></iframe>'; echo '<iframe src="https://docs.google.com/viewer?embedded=true&hl=en&url=' . fm_enc($file_url) . '" frameborder="no" style="width:100%;min-height:460px"></iframe>';
@@ -1783,14 +1780,12 @@ if (isset($_GET['view'])) {
</div> </div>
</div> </div>
<?php <?php
if(!$quickView) {
fm_show_footer(); fm_show_footer();
}
exit; exit;
} }
// file editor // file editor
if (isset($_GET['edit'])) { if (isset($_GET['edit']) && !FM_READONLY) {
$file = $_GET['edit']; $file = $_GET['edit'];
$file = fm_clean_path($file, false); $file = fm_clean_path($file, false);
$file = str_replace('/', '', $file); $file = str_replace('/', '', $file);
@@ -3173,6 +3168,7 @@ class FM_Zipper
} }
if (is_array($files)) { if (is_array($files)) {
foreach ($files as $f) { foreach ($files as $f) {
$f = fm_clean_path($f);
if (!$this->addFileOrDir($f)) { if (!$this->addFileOrDir($f)) {
$this->zip->close(); $this->zip->close();
return false; return false;
@@ -3277,6 +3273,7 @@ class FM_Zipper_Tar
$this->tar = new PharData($filename); $this->tar = new PharData($filename);
if (is_array($files)) { if (is_array($files)) {
foreach ($files as $f) { foreach ($files as $f) {
$f = fm_clean_path($f);
if (!$this->addFileOrDir($f)) { if (!$this->addFileOrDir($f)) {
return false; return false;
} }
@@ -4024,7 +4021,7 @@ $isStickyNavBar = $sticky_navbar ? 'navbar-fixed' : 'navbar-normal';
}); });
}); });
</script> </script>
<?php if (isset($_GET['edit']) && isset($_GET['env']) && FM_EDIT_FILE): <?php if (isset($_GET['edit']) && isset($_GET['env']) && FM_EDIT_FILE && !FM_READONLY):
$ext = pathinfo($_GET["edit"], PATHINFO_EXTENSION); $ext = pathinfo($_GET["edit"], PATHINFO_EXTENSION);
$ext = $ext == "js" ? "javascript" : $ext; $ext = $ext == "js" ? "javascript" : $ext;

2
translation.json
View File

@@ -1,6 +1,6 @@
{ {
"appName": "Tiny File Manager", "appName": "Tiny File Manager",
"version": "2.5.0", "version": "2.5.1",
"language": [ "language": [
{ {
"name": "Română", "name": "Română",