--- /dev/null Thu Jan 01 00:00:00 1970 +0000
+++ b/wp/wp-content/plugins/wp-filemanager/fm.php Wed Nov 06 03:21:17 2013 +0000
@@ -0,0 +1,90 @@
+<?php
+/* DO NOT CHANGE ANYTHING HERE */
+if ( ! defined( 'ABSPATH' ) )
+ die();
+
+require_once('../wp-config.php');
+$title = 'FileManager';
+define("VERSION", "1.4.0");
+include(WP_CONTENT_DIR . "/plugins/wp-filemanager/conf/config.inc.php");
+include(WP_CONTENT_DIR . "/plugins/wp-filemanager/incl/functions.inc.php");
+include(WP_CONTENT_DIR . "/plugins/wp-filemanager/lang/$language.inc.php");
+include(WP_CONTENT_DIR . "/plugins/wp-filemanager/incl/header.inc.php");
+include(WP_CONTENT_DIR . "/plugins/wp-filemanager/incl/html.header.inc.php");
+/* register directory/filename */
+
+if (isset($_GET['directory_name']))
+{
+ $directory_name = basename(stripslashes($_GET['directory_name']))."/";
+}
+if (isset($_GET['filename']))
+{
+ $filename = basename(stripslashes($_GET['filename']));
+}
+if (isset($_POST['directory_name']))
+{
+ $directory_name = basename(stripslashes($_POST['directory_name']))."/";
+}
+if (isset($_POST['filename']))
+{
+ $filename = basename(stripslashes($_POST['filename']));
+}
+if (isset($_POST['new_directory_name']))
+{
+ $new_directory_name = basename(stripslashes($_POST['new_directory_name']))."/";
+}
+if (isset($_POST['new_filename']))
+{
+ $new_filename = basename(stripslashes($_POST['new_filename']));
+}
+/* validate path */
+if (isset($_GET['path']))
+ $wp_fileman_path = wp_fileman_validate_path($_GET['path']);
+else if (isset($_POST['path']))
+ $wp_fileman_path = wp_fileman_validate_path($_POST['path']);
+
+
+if (!isset($wp_fileman_path) || $wp_fileman_path == "./" || $wp_fileman_path == ".\\" || $wp_fileman_path == "/" || $wp_fileman_path == "\\")
+ $wp_fileman_path = false;
+
+if (isset($_SESSION['session_username']) && $_SESSION['session_username'] == $username && isset($_SESSION['session_password']) && $_SESSION['session_password'] == md5($password) || !$phpfm_auth)
+{
+ if (!(@opendir($home_directory.$wp_fileman_path)) || (substr($home_directory, -1) != "/"))
+ {
+ print "<table class='output' width=400 cellpadding=0 cellspacing=0>";
+ print "<tr><td align='center'>";
+
+ if (!(@opendir($home_directory)))
+ print "<font color='#CC0000'>$StrInvalidHomeFolder</font>";
+ else if (!(@opendir($home_directory.$wp_fileman_path)))
+ print "<font color='#CC0000'>$StrInvalidPath</font>";
+ if (substr($home_directory, -1) != "/")
+ print " <font color='#CC0000'>$StrMissingTrailingSlash</font>";
+
+ print "</td></tr>";
+ print "</table><br />";
+ }
+ if (isset($_GET['action']) && is_file(WP_CONTENT_DIR . "/plugins/wp-filemanager/incl/".$_GET['action'].".inc.php") && wp_fileman_is_valid_name($_GET['action']))
+ {
+ include(WP_CONTENT_DIR . "/plugins/wp-filemanager/incl/".basename($_GET['action']).".inc.php");
+ }
+ else if (isset($_GET['output']) && is_file(WP_CONTENT_DIR . "/plugins/wp-filemanager/incl/".$_GET['output'].".inc.php") && wp_fileman_is_valid_name($_GET['output']))
+ {
+ print "<table class='output' width=400 cellpadding=0 cellspacing=0>";
+ print "<tr><td align='center'>";
+ include(WP_CONTENT_DIR . "/plugins/wp-filemanager/incl/".basename($_GET['output']).".inc.php");
+ print "</td></tr>";
+ print "</table><br />";
+ include(WP_CONTENT_DIR . "/plugins/wp-filemanager/incl/filebrowser.inc.php");
+ }
+ else
+ {
+ include(WP_CONTENT_DIR . "/plugins/wp-filemanager/incl/filebrowser.inc.php");
+ }
+}
+else
+{
+ include(WP_CONTENT_DIR . "/plugins/wp-filemanager/incl/login.inc.php");
+}
+//include(WP_CONTENT_DIR . "/plugins/wp-filemanager/incl/footer.inc.php");
+?>