mirror/php-tinyfilemanager
1
0
Fork 0
mirror of https://github.com/prasathmani/tinyfilemanager.git synced 2025-07-30 05:21:26 +02:00
Code Issues Releases Wiki Activity
292 Commits 4 Branches 13 Tags
ccf18947c8ae9c1041d1bd41f80bfaa65035515b
Commit Graph

162 Commits

Author SHA1 Message Date
Michael Milette
9b2bb18acb Optimized and refactored fm_get_directorysize() function, and added validation. (#720) 2022-02-12 23:15:38 +05:30
Prasath Mani
7103691048 Fix - typo error #641 2022-02-12 13:54:22 +05:30
Prasath Mani
85821736c0 Update version 2022-02-12 13:48:19 +05:30
jicho
e474ade92b Client IP behind proxy (#665) 
Function added for IP filtering when the filemanager is hosted behind a web proxy.

I've added a function for this to the file, not sure how else to implement it since everything is one file.
 2022-02-12 13:28:26 +05:30
Daniel Kranich
ad30a3a1f3 Add Global Readonly (#158) 
Added a global readonly variable that will force readonly mode both when
not using the auth system and for all users if the auth system is being
used.

Co-authored-by: Prasath Mani <prasathmani@users.noreply.github.com>
 2022-02-12 13:22:56 +05:30
Roni
bb1d1d3801 added name of the file being edited (#542) 
added name of the file being edited and a back button in a better location
 2022-02-12 13:17:35 +05:30
Daniele Paganelli
c3a2f1d604 Chunked file upload (#714) 
Removes any PHP or server-side file-upload limits by using file chunks
 2022-02-12 13:16:07 +05:30
joaogmauricio
154947ef83 apply fix to path traversal vulnerability (#718) 
Co-authored-by: João Maurício <joao.goncalves.mauricio@pwc.com>
 2022-02-12 10:34:05 +05:30
Enyedi Szilárd
3d28d8cb8e Update tinyfilemanager.php (#707) 
Changed "Folder is empty" message to be language-specific.
 2022-01-28 07:43:56 +05:30
Roman Steiner
9b85951cfc fix "400 bad request" when saving files (#705) 2022-01-21 08:06:27 +05:30
Suyadi
08cb4b0fce Fix a non well formatted numeric value encountered & Notice: Undefined offset in fm_get_filesize() (#681) 
For non `well formatted numeric value encountered`, see #670
For `Notice: Undefined offset 9` (current implementation result) see: https://3v4l.org/1qHit#v5.0.0
For new impementation result, see: https://3v4l.org/d0UBh#v5.0.0
 2021-12-13 10:15:09 +05:30
Boris Delev
95d41a9518 Just a little fix with missing " in button HTML (#675) 
Its a little html fix- its about 1787 line- the class value it not closed.
```
<button type="button" class="btn btn-sm btn-outline-primary name="Save"
```
changed to:

```
<button type="button" class="btn btn-sm btn-outline-primary" name="Save"
```
 2021-12-03 07:16:32 +05:30
febinrev
2046bbde72 Patched the RCE (#636) 
I have patched the file upload directory traversal to Authenticated Remote Code Execution Vulnerability.
 2021-11-12 08:31:02 +05:30
Agent Smith
09e2b9a107 Fix saving of empty files (#612) 
When you have a file without content, for example when you cleared you were unable to save it because of an incorrect if-statement. This is the fix for that problem.
 2021-08-06 07:43:22 +05:30
Agent Smith
9ee41b14d6 Added some missing translations (#608) 2021-08-02 10:39:37 +05:30
schmigz
8158333d93 Update tinyfilemanager.php (#568) 
fm_get_file_mimes() was causing errors for unknown extensions as it was causing an error as array element was not defined and return value was never checked.  According to https://developer.mozilla.org/en-US/docs/Web/HTTP/Basics_of_HTTP/MIME_types/Common_types and several other resources,  application/octet-stream is the default value for all other cases. An unknown file type should use this type.   I put a check in there to use that by default so a valid value is always returned.

It might be useful to replace this function with the  built-in PHP function mime_content_type() but that adds some additional dependencies as it does not always work out of the box with PHP.
 2021-06-05 11:57:53 +05:30
sbivol
e843adcf0b Fix function name and add extensions for icons (#567) 
* Set icons for more file extensions

* Fix function name
 2021-06-05 08:33:57 +05:30
safraja
f182e378e3 PHP8 fix and few other changes (#562) 2021-06-01 10:11:15 +05:30
Prasath Mani
27d7126767 Typo error fix #548 2021-05-17 15:05:46 +05:30
Prasath Mani
a62bb38773 PR update and sync 2021-05-17 12:22:16 +05:30
Adrien Bonnel
603f048722 Fix PHP 5.X (#494) 
Arrays cannot be used in "define" functions with PHP versions lower than 7.X
Solution given via my professional account (ArlorNaturalScientific)
 2021-05-17 11:59:34 +05:30
Roni
9b5d2718ab New translations (#537) 
New translations

Novas Traduções
 2021-05-17 11:55:47 +05:30
Roni
db3f4c01ea Added in preferences light or dark theme (#539) 
Added in the preferences option to change the light or dark theme,

Now to change the theme will be in the preferences / settings area, along with other settings, and may even have other themes in the future.
 2021-05-17 09:24:45 +05:30
William Gilmour
c5d481c5cc Fixed Rename with folder quotes (#534) 
Fixed the Rename functionality to work with folders that contain single quotes in them by calling `addslashes` on the path.
 2021-04-30 05:57:10 +05:30
Prasath Mani
a04567d3ba Fix security issues #525 and #526 2021-04-22 13:41:35 +05:30
huntr.dev | the place to protect open source
03c3f6d7f9 Fixed 3 sinks which caused XSS in filename (#511) 
Co-authored-by: Vaibhav Shinde <vaibhavkshinde20@gmail.com>
 2021-03-22 18:26:55 +05:30
Prasath Mani
95147f5828 remove decoded php codes and code cleanup 2021-02-24 13:33:57 +05:30
ccdd13
dd9d7c09a2 Feat/mixed changes (#502) 
* remove trailing whitespace

Signed-off-by: ccdd13 <78702084+ccdd13@users.noreply.github.com>

* safe include config.php with __DIR__

* replace doc url for $datetime_format from function.date.php to datetime.format.php

Signed-off-by: ccdd13 <ccdd13@users.noreply.github.com>

* put $auth_users & $readonly_users together

Signed-off-by: ccdd13 <ccdd13@users.noreply.github.com>

* update $datetime_format

Signed-off-by: ccdd13 <ccdd13@users.noreply.github.com>

Co-authored-by: ammm ccdd12 <mamok43076@dashseat.com>
Co-authored-by: ccdd13 <ccdd13@users.noreply.github.com>
 2021-02-24 12:37:38 +05:30
Prasath Mani
a19ff20768 Update vendor CDN versions 2021-02-23 11:47:57 +05:30
Peter Frost
ef09231454 Fix file size display in file viewer (#475) 2020-12-23 20:46:00 +05:30
Dvash
211568ff4c fix(actions): creating a backup in FM_ROOT_PATH (#418) 2020-08-26 03:55:13 +05:30
DvashVistrame
c8fff90634 fix: prevent double write to file (#409) 2020-08-04 14:00:05 +05:30
safraja
a6a28a6356 Fix sorting by date and size (#387) 
Based on suggestions in https://github.com/prasathmani/tinyfilemanager/issues/197
but uses data-sort attribute (from DataTable wiki https://datatables.net/examples/advanced_init/html5-data-attributes.html) instead of invisible characters and also distinguishes files and folders, so they stay grouped even after sort.
(I am sorry for my bad English.)
 2020-07-20 05:39:47 +05:30
zachlankton
65f7dc448d Fixes #183, Fixes #289 (#400) 
Fixes setting drop down boxes to the current ace editor mode and theme on page load.
 2020-07-20 05:37:41 +05:30
zachlankton
fb31a14873 Added Error Message When File Fails to Write (#399) 
Added error checking and message for when file fails to write on the server side.  Before this change if a write failed on the server side it would still present the user with a misleading "Saved Successfully" Message.
 2020-07-20 05:36:47 +05:30
Michael Milette
c741ae2212 Notice: A non well formed numeric value encountered (#386) 
Eliminates the following PHP warnings when error reporting is turned on:

Notice: A non well formed numeric value encountered in tinyfilemanager.php on line 2443
Notice: A non well formed numeric value encountered in tinyfilemanager.php on line 2444

This happens because PHP floor and round are expecting a (float), not an (int).
 2020-06-27 16:02:09 +05:30
Prasath Mani
0a92002919 if exist include config.php #366 2020-05-24 17:07:17 +05:30
Prasath Mani
1dbe7c5339 dark mode #352 
Request: Dark mode option in the admin section. #260
 2020-05-24 14:00:27 +05:30
Nicolas Peugnet
8fb1816877 Create a new session if permission denied on current one (#331) 
In a multi-user configuration, the current session file can be unreadable
by the current user. This tries to create a new session in this case.
 2020-05-24 08:51:44 +05:30
TheFax
5903849388 Added Optional configuration file (#338) 
* Added optional configuration file loading

* First commit of optional configuration file

This file is OPTIONAL.
If this file is not present in your webserver, tinyfilemanager will works with its internal configuration.

* removed define

define is not a configuration
 2020-05-24 08:50:49 +05:30
Nguyen The Anh
0826838917 Add support user customized config file (if exists) (#242) 
* feat(/): add support user customized config file (if exists)

* Show current process ID in Status bar + Make fm_get_filesize function much more concise (#245)

* Update Simplified Chinese (#241)

* Feature Font Size Choose Options / Bug Fix Settings not visible in auth=false (#240)

* Bug fix and PR #245, #241, #240

Co-authored-by: 刘明野 <898310895@qq.com>
Co-authored-by: B Bharath Kumar Reddy <39063133+bbharathkumarreddy@users.noreply.github.com>
Co-authored-by: Prasath Mani <prasath.mani@publicissapient.com>
Co-authored-by: Prasath Mani <prasathmani@users.noreply.github.com>
 2020-05-24 08:50:25 +05:30
Prasath Mani
a0c595a8e1 Security fix #357 
Download file causes timeout #353
Download Restart @ 88% #312
download large file issues #259
File upload issue #354
FIle Upload URL error #360
Bug in .tar archive extraction when destination(s) file(s) already exist (HTTP error 500) #332
Backup File return false #201
 2020-05-18 13:37:02 +05:30
rinoshiyo
1482e41f74 fix settings are not saved. (#361) 2020-05-18 09:45:54 +05:30
Vincent Vandalon
1ca011ca67 Added duplicate functionality (#146) 
* Added duplicate functionality

* Updated functionality to also duplicate folders

* Merged copy & duplicate buttons
 2020-03-23 19:31:44 +05:30
Roni
e259ffda4d Update tinyfilemanager.php (#327) 2020-03-20 07:55:51 +05:30
Maxim Khokhryakov
e8fc6d546a fix "Archive not created" error (#317) 
fix "Archive not created" error while trying to create Tar archive
 2020-03-12 12:48:19 +05:30
Akira Ely
1501835f61 Update tinyfilemanager.php (#309) 
Login box stays middle on small screens
 2020-02-24 11:39:53 +05:30
Michele Locati
c991555de5 Avoid accessing undefined $_POST['file'] index (#308) 
I don't know when this occurs, but I have this entry in my web server log:
 PHP Notice:  Undefined index: file in tinyfilemanager.php on line 1165
 2020-02-18 22:46:21 +05:30
Prasath Mani
9e3877270b Advanced Search 
Mouse hover image preview
Upload error handling
Thumbnail view for folders containing images #283
How to search inside folders. #282
Search bar with regex matching #140
Subfolder Search Feature #132
 2020-01-14 17:57:32 +05:30
Nguyen The Anh
0319b7b102 feat(/): add live image preview when user hovers the image file name (only when the number of files in current folder less than 500 files) (#244) 
Co-authored-by: Prasath Mani <prasathmani@users.noreply.github.com>
 2020-01-14 17:44:52 +05:30