|
0
|
1 |
<?php |
|
|
2 |
/* |
|
|
3 |
Logic has shifted to a different place all together this file can be deleted at later stage |
|
|
4 |
if ( ! defined( 'ABSPATH' ) ) |
|
|
5 |
die(); |
|
|
6 |
if (!@include_once(WP_CONTENT_DIR . "/plugins/wp-filemanager/incl/auth.inc.php")) |
|
|
7 |
include_once(WP_CONTENT_DIR . "/plugins/wp-filemanager/incl/auth.inc.php"); |
|
|
8 |
if ($AllowDownload) |
|
|
9 |
{ |
|
|
10 |
if (isset($_GET['action']) && $_GET['action'] == "download") |
|
|
11 |
{ |
|
|
12 |
session_cache_limiter("public, post-check=50"); |
|
|
13 |
// header("Cache-Control: private"); |
|
|
14 |
// echo "Download"; |
|
|
15 |
} |
|
|
16 |
//echo "Download"; |
|
|
17 |
if (isset($session_save_path)) |
|
|
18 |
session_save_path($session_save_path); |
|
|
19 |
if (isset($_GET['path'])) |
|
|
20 |
$wp_fileman_path = wp_fileman_validate_path($_GET['path']); |
|
|
21 |
if (!isset($wp_fileman_path)) |
|
|
22 |
$wp_fileman_path = FALSE; |
|
|
23 |
if ($wp_fileman_path == "./" || $wp_fileman_path == ".\\" || $wp_fileman_path == "/" || $wp_fileman_path == "\\") |
|
|
24 |
$wp_fileman_path = FALSE; |
|
|
25 |
if (isset($_GET['filename'])) |
|
|
26 |
$filename = basename(stripslashes($_GET['filename'])); |
|
|
27 |
//echo "Download"; |
|
|
28 |
if (isset($_GET['filename']) && isset($_GET['action']) && is_file($home_directory.$wp_fileman_path.$filename) || is_file("../../../".$home_directory.$wp_fileman_path.$filename)) |
|
|
29 |
{ |
|
|
30 |
//echo "file found"; |
|
|
31 |
if (is_file($home_directory.$wp_fileman_path.$filename) && !strstr($home_directory, "./") && !strstr($home_directory, ".\\")) |
|
|
32 |
$fullpath = $home_directory.$wp_fileman_path.$filename; |
|
|
33 |
else if (is_file("../../../".$home_directory.$wp_fileman_path.$filename)) |
|
|
34 |
$fullpath = "../../../".$home_directory.$wp_fileman_path.$filename; |
|
|
35 |
echo $fullpath; |
|
|
36 |
if (!$AllowDownload && $AllowView && !wp_fileman_is_viewable_file($filename)) |
|
|
37 |
{ |
|
|
38 |
print "<font color='#CC0000'>$StrAccessDenied</font>"; |
|
|
39 |
exit(); |
|
|
40 |
} |
|
|
41 |
|
|
|
42 |
// header("Content-Type: ".get_mimetype($filename)); |
|
|
43 |
// header("Content-Length: ".filesize($fullpath)); |
|
|
44 |
// if ($_GET['action'] == "download"); |
|
|
45 |
// header("Content-Disposition: attachment; filename=$filename"); |
|
|
46 |
|
|
|
47 |
// readfile($fullpath); |
|
|
48 |
} |
|
|
49 |
print "<table class='index' width=500 cellpadding=0 cellspacing=0>"; |
|
|
50 |
print "<tr>"; |
|
|
51 |
print "<td class='iheadline' height=21>"; |
|
|
52 |
print "<font class='iheadline'> $StrDownload \"".htmlentities($filename)."\"</font>"; |
|
|
53 |
print "</td>"; |
|
|
54 |
print "<td class='iheadline' align='right' height=21>"; |
|
|
55 |
print "<font class='iheadline'><a href='$base_url&path=".htmlentities(rawurlencode($wp_fileman_path))."'><img src='" . WP_CONTENT_URL . "/plugins/wp-filemanager/icon/back.gif' border=0 alt='$StrBack'></a></font>"; |
|
|
56 |
print "</td>"; |
|
|
57 |
print "</tr>"; |
|
|
58 |
print "<tr>"; |
|
|
59 |
print "<td valign='top' colspan=2>"; |
|
|
60 |
print "<center><br />"; |
|
|
61 |
print "$StrDownloadClickLink<br /><br />"; |
|
|
62 |
print "<a href='" . WP_CONTENT_URL . "/plugins/wp-filemanager/incl/libfile.php?".SID."&path=".htmlentities(rawurlencode($wp_fileman_path))."&filename=".htmlentities(rawurlencode($filename))."&action=download'>$StrDownloadClickHere <i>\"".htmlentities($filename)."\"</i></a>"; |
|
|
63 |
print "<br /><br /></center>"; |
|
|
64 |
print "</td>"; |
|
|
65 |
print "</tr>"; |
|
|
66 |
print "</table>"; |
|
|
67 |
} |
|
|
68 |
else |
|
|
69 |
print "<font color='#CC0000'>$StrAccessDenied</font>"; |
|
|
70 |
*/ |
|
|
71 |
?> |