extern/egroupware
1
0
Fork 1
mirror of https://github.com/EGroupware/egroupware.git synced 2024-12-27 00:58:55 +01:00
Code Issues Packages Projects Releases Wiki Activity

Clean up / and $fakebase, and prevent uploading there

Browse Source
This commit is contained in:
zone 2001-06-14 21:23:05 +00:00
parent 11e67f96ee
commit e547ed339c
1 changed files with 61 additions and 48 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

17
filemanager/index.php
View File

@ -585,6 +585,8 @@ if (!$op && !$delete && !$createdir && !$renamefiles && !$move && !$copy && !$ed
html_table_end ();
html_break (2);
if ($path != "/" && $path != $fakebase)
{
if (!$rename && !$edit_comments)
{
html_form_input ("submit", "edit", "Edit");
@ -608,6 +610,7 @@ if (!$op && !$delete && !$createdir && !$renamefiles && !$move && !$copy && !$ed
html_form_input ("submit", "edit_comments", "Edit comments");
}
}
}
###
# Display some inputs and info, but not when renaming or editing comments
@ -622,9 +625,13 @@ if (!$op && !$delete && !$createdir && !$renamefiles && !$move && !$copy && !$ed
html_break (1);
html_form_input ("submit", "go", "Go to:");
if ($path != "/" && $path != $fakebase)
{
html_form_input ("submit", "copy", "Copy to:");
html_form_input ("submit", "move", "Move to:");
}
html_form_select_begin ("todir");
html_break (1);
@ -681,12 +688,15 @@ if (!$op && !$delete && !$createdir && !$renamefiles && !$move && !$copy && !$ed
html_form_select_end ();
if ($path != "/" && $path != $fakebase)
{
html_break (1);
html_form_input ("submit", "download", "Download");
html_nbsp (3);
html_form_input ("text", "createdir", NULL, 255, 15);
html_form_input ("submit", "newdir", "Create Folder");
}
html_form_end ();
@ -699,7 +709,7 @@ if (!$op && !$delete && !$createdir && !$renamefiles && !$move && !$copy && !$ed
html_text (borkb ($usedspace, NULL, 1));
html_nbsp (3);
if ($path == $homedir)
if ($path == $homedir || $path == $fakebase)
{
html_text_bold ("Unused space: ");
html_text (borkb ($userinfo["hdspace"] - $usedspace, NULL, 1));
@ -716,6 +726,8 @@ if (!$op && !$delete && !$createdir && !$renamefiles && !$move && !$copy && !$ed
# Show file upload boxes. Note the last argument to html (). Repeats 5 times
###
if ($path != "/" && $path != $fakebase)
{
html_break (2);
html_form_begin ("$appname/index.php?op=upload&path=$path", "post", "multipart/form-data");
html_table_begin ();
@ -740,6 +752,7 @@ if (!$op && !$delete && !$createdir && !$renamefiles && !$move && !$copy && !$ed
html_form_input ("submit", "upload_files", "Upload files");
html_form_end ();
}
}
html_table_col_end ();
html_table_row_end ();
@ -888,7 +901,7 @@ if ($edit)
# Handle File Uploads
###
elseif ($op == "upload")
elseif ($op == "upload" && $path != "/" && $path != $fakebase)
{
for ($i = 0; $i != 5; $i++)
{