--- /dev/null Thu Jan 01 00:00:00 1970 +0000
+++ b/wp/wp-content/plugins/wp-filemanager/incl/download.inc.php Wed Nov 06 03:21:17 2013 +0000
@@ -0,0 +1,71 @@
+<?php
+/*
+Logic has shifted to a different place all together this file can be deleted at later stage
+if ( ! defined( 'ABSPATH' ) )
+ die();
+if (!@include_once(WP_CONTENT_DIR . "/plugins/wp-filemanager/incl/auth.inc.php"))
+ include_once(WP_CONTENT_DIR . "/plugins/wp-filemanager/incl/auth.inc.php");
+if ($AllowDownload)
+{
+if (isset($_GET['action']) && $_GET['action'] == "download")
+{
+ session_cache_limiter("public, post-check=50");
+// header("Cache-Control: private");
+// echo "Download";
+}
+//echo "Download";
+if (isset($session_save_path))
+ session_save_path($session_save_path);
+if (isset($_GET['path']))
+ $wp_fileman_path = wp_fileman_validate_path($_GET['path']);
+if (!isset($wp_fileman_path))
+ $wp_fileman_path = FALSE;
+if ($wp_fileman_path == "./" || $wp_fileman_path == ".\\" || $wp_fileman_path == "/" || $wp_fileman_path == "\\")
+ $wp_fileman_path = FALSE;
+if (isset($_GET['filename']))
+ $filename = basename(stripslashes($_GET['filename']));
+//echo "Download";
+if (isset($_GET['filename']) && isset($_GET['action']) && is_file($home_directory.$wp_fileman_path.$filename) || is_file("../../../".$home_directory.$wp_fileman_path.$filename))
+{
+ //echo "file found";
+ if (is_file($home_directory.$wp_fileman_path.$filename) && !strstr($home_directory, "./") && !strstr($home_directory, ".\\"))
+ $fullpath = $home_directory.$wp_fileman_path.$filename;
+ else if (is_file("../../../".$home_directory.$wp_fileman_path.$filename))
+ $fullpath = "../../../".$home_directory.$wp_fileman_path.$filename;
+echo $fullpath;
+ if (!$AllowDownload && $AllowView && !wp_fileman_is_viewable_file($filename))
+ {
+ print "<font color='#CC0000'>$StrAccessDenied</font>";
+ exit();
+ }
+
+// header("Content-Type: ".get_mimetype($filename));
+// header("Content-Length: ".filesize($fullpath));
+// if ($_GET['action'] == "download");
+ // header("Content-Disposition: attachment; filename=$filename");
+
+// readfile($fullpath);
+}
+ print "<table class='index' width=500 cellpadding=0 cellspacing=0>";
+ print "<tr>";
+ print "<td class='iheadline' height=21>";
+ print "<font class='iheadline'> $StrDownload \"".htmlentities($filename)."\"</font>";
+ print "</td>";
+ print "<td class='iheadline' align='right' height=21>";
+ print "<font class='iheadline'><a href='$base_url&path=".htmlentities(rawurlencode($wp_fileman_path))."'><img src='" . WP_CONTENT_URL . "/plugins/wp-filemanager/icon/back.gif' border=0 alt='$StrBack'></a></font>";
+ print "</td>";
+ print "</tr>";
+ print "<tr>";
+ print "<td valign='top' colspan=2>";
+ print "<center><br />";
+ print "$StrDownloadClickLink<br /><br />";
+ print "<a href='" . WP_CONTENT_URL . "/plugins/wp-filemanager/incl/libfile.php?".SID."&path=".htmlentities(rawurlencode($wp_fileman_path))."&filename=".htmlentities(rawurlencode($filename))."&action=download'>$StrDownloadClickHere <i>\"".htmlentities($filename)."\"</i></a>";
+ print "<br /><br /></center>";
+ print "</td>";
+ print "</tr>";
+ print "</table>";
+}
+else
+ print "<font color='#CC0000'>$StrAccessDenied</font>";
+*/
+?>