Mercurial Mercurial > enmi-conf.org / file revision
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
wp/wp-content/plugins/wp-filemanager/incl/download.inc.php
author ymh <ymh.work@gmail.com>
Wed, 06 Nov 2013 03:21:17 +0000
changeset 0 d970ebf37754
permissions -rw-r--r--
first import

<?php
/*
Logic has shifted to a different place all together this file can be deleted at later stage
if ( ! defined( 'ABSPATH' ) )
	die();
if (!@include_once(WP_CONTENT_DIR . "/plugins/wp-filemanager/incl/auth.inc.php"))
 include_once(WP_CONTENT_DIR . "/plugins/wp-filemanager/incl/auth.inc.php");
if ($AllowDownload)
{
if (isset($_GET['action']) && $_GET['action'] == "download")
{
    session_cache_limiter("public, post-check=50");
//    header("Cache-Control: private");
//    echo "Download";
}
//echo "Download";
if (isset($session_save_path)) 
	session_save_path($session_save_path);
if (isset($_GET['path'])) 
	$wp_fileman_path = wp_fileman_validate_path($_GET['path']);
if (!isset($wp_fileman_path)) 
	$wp_fileman_path = FALSE;
if ($wp_fileman_path == "./" || $wp_fileman_path == ".\\" || $wp_fileman_path == "/" || $wp_fileman_path == "\\") 
	$wp_fileman_path = FALSE;
if (isset($_GET['filename'])) 
	$filename = basename(stripslashes($_GET['filename']));
//echo "Download";
if (isset($_GET['filename']) && isset($_GET['action']) && is_file($home_directory.$wp_fileman_path.$filename) || is_file("../../../".$home_directory.$wp_fileman_path.$filename)) 
{
 //echo "file found";
  if (is_file($home_directory.$wp_fileman_path.$filename) && !strstr($home_directory, "./") && !strstr($home_directory, ".\\"))
   $fullpath = $home_directory.$wp_fileman_path.$filename;
  else if (is_file("../../../".$home_directory.$wp_fileman_path.$filename))
   $fullpath = "../../../".$home_directory.$wp_fileman_path.$filename;
echo $fullpath;
  if (!$AllowDownload && $AllowView && !wp_fileman_is_viewable_file($filename))
  {
   print "<font color='#CC0000'>$StrAccessDenied</font>";
   exit();
  }

//  header("Content-Type: ".get_mimetype($filename));
//  header("Content-Length: ".filesize($fullpath));
//  if ($_GET['action'] == "download");
  // header("Content-Disposition: attachment; filename=$filename");

//  readfile($fullpath);
}
  print "<table class='index' width=500 cellpadding=0 cellspacing=0>";
   print "<tr>";
    print "<td class='iheadline' height=21>";
     print "<font class='iheadline'>&nbsp;$StrDownload \"".htmlentities($filename)."\"</font>";
    print "</td>";
    print "<td class='iheadline' align='right' height=21>";
     print "<font class='iheadline'><a href='$base_url&amp;path=".htmlentities(rawurlencode($wp_fileman_path))."'><img src='" . WP_CONTENT_URL . "/plugins/wp-filemanager/icon/back.gif' border=0 alt='$StrBack'></a></font>";
    print "</td>";
   print "</tr>";
   print "<tr>";
    print "<td valign='top' colspan=2>";
     print "<center><br />";
      print "$StrDownloadClickLink<br /><br />";
      print "<a href='" . WP_CONTENT_URL . "/plugins/wp-filemanager/incl/libfile.php?".SID."&amp;path=".htmlentities(rawurlencode($wp_fileman_path))."&amp;filename=".htmlentities(rawurlencode($filename))."&amp;action=download'>$StrDownloadClickHere <i>\"".htmlentities($filename)."\"</i></a>";
     print "<br /><br /></center>";
     print "</td>";
   print "</tr>";
  print "</table>";
}
else
 print "<font color='#CC0000'>$StrAccessDenied</font>";
*/
?>
enmi-conf.org