deblan-mirror/tinyfilemanager
deblan-mirror/tinyfilemanager
1
0
Fork 0
mirror of https://github.com/prasathmani/tinyfilemanager synced 2024-05-17 21:16:38 +02:00
Code Issues Projects Releases Wiki Activity
314 commits 3 branches 12 tags 16 MiB
Commit graph

181 commits

Author SHA1 Message Date
Prasath Mani df80b73436 Refactor Code and Update Doc 2022-11-20 15:04:25 +05:30
Prasath Mani 8de16a4c8a Major update on security, improved UI and bug fix. 2022-11-19 19:55:39 +00:00
Prasath Mani 4d8d4a3aba
Update tinyfilemanager.php 2022-11-07 22:48:15 +05:30
Prasath Mani fce0f5bacb Fix warning message 2022-11-07 22:42:07 +05:30
llcool 59c6b9b26a
Downloading file - PHP warning loop "Permission denied" (#879) 
* Bugfix: Stop looping error when downloading a file with no access.

* Delete .history directory

ignore .history
 2022-11-07 22:24:56 +05:30
Rizky be49a13b8e
Fixes advanced search not working. (#878) 
Fix #869
 2022-11-07 22:23:01 +05:30
ririko5834 2c0e6d216e
Update tinyfilemanager.php (#874) 2022-10-31 21:19:21 +05:30
Prasath Mani 805308a013
remove latest version checker 2022-09-01 16:25:29 +05:30
Dmitry Efremov 2eb00ab3de
Adds json mime type as text type to allow edit json files (#841) 2022-08-25 09:50:39 +05:30
Agent Smith 74727fe48a
Add webm to videos (#833) 2022-08-06 11:17:47 +05:30
Sebjugate 3a3033bdce
Added .yml, .yaml and .toml extensions. (#816) 
These are common config file extensions.
 2022-07-14 07:16:02 +05:30
zedzhen afe1227caa
Update russia translate and fix bug (#815) 
* fix bug

if $calc_folder is enabled and there are insufficient permissions for one of the subfolders, then "PHP Fatal error: Uncaught RuntimeException: SplFileInfo::getSize()"

* lng() update

added lng() and delete unesed

* update russia translate
 2022-07-14 07:14:54 +05:30
Saied cda40e22f1
More accurate ip recognition (#807) (#813) 2022-07-14 07:13:49 +05:30
Michael Horstmann b24887d4fd
Removed unused function (#806) 
To fix: Undefined constant 'FM_EXTENSION'
 2022-07-07 12:01:02 +05:30
Prasath Mani 17de8af81b PHP "divide by zero" error when unzipping 0 byte (very small) .zip files #803 2022-06-29 02:14:35 +00:00
Apichart F 50ccd29623
Fix advanced search issue for read-only user (#785) 
$_POST['type']=="search" not reachable if FM_READONLY is true
 2022-05-27 11:06:25 +05:30
Tanner 04c1d45b5f
resolve sorting issues, keep back button at top (#779) 2022-05-05 03:51:21 +05:30
Prasath Mani ca94f23c47
Update tinyfilemanager.php 2022-04-18 12:51:55 +05:30
mclorch a65f8ff8b5
fix download Content-Type header (#770) 2022-04-11 13:39:51 +05:30
Michael Milette 9b2bb18acb
Optimized and refactored fm_get_directorysize() function, and added validation. (#720) 2022-02-12 23:15:38 +05:30
Prasath Mani 7103691048 Fix - typo error #641 2022-02-12 13:54:22 +05:30
Prasath Mani 85821736c0 Update version 2022-02-12 13:48:19 +05:30
jicho e474ade92b
Client IP behind proxy (#665) 
Function added for IP filtering when the filemanager is hosted behind a web proxy.

I've added a function for this to the file, not sure how else to implement it since everything is one file.
 2022-02-12 13:28:26 +05:30
Daniel Kranich ad30a3a1f3
Add Global Readonly (#158) 
Added a global readonly variable that will force readonly mode both when
not using the auth system and for all users if the auth system is being
used.

Co-authored-by: Prasath Mani <prasathmani@users.noreply.github.com>
 2022-02-12 13:22:56 +05:30
Roni bb1d1d3801
added name of the file being edited (#542) 
added name of the file being edited and a back button in a better location
 2022-02-12 13:17:35 +05:30
Daniele Paganelli c3a2f1d604
Chunked file upload (#714) 
Removes any PHP or server-side file-upload limits by using file chunks
 2022-02-12 13:16:07 +05:30
joaogmauricio 154947ef83
apply fix to path traversal vulnerability (#718) 
Co-authored-by: João Maurício <joao.goncalves.mauricio@pwc.com>
 2022-02-12 10:34:05 +05:30
Enyedi Szilárd 3d28d8cb8e
Update tinyfilemanager.php (#707) 
Changed "Folder is empty" message to be language-specific.
 2022-01-28 07:43:56 +05:30
Roman Steiner 9b85951cfc
fix "400 bad request" when saving files (#705) 2022-01-21 08:06:27 +05:30
Suyadi 08cb4b0fce
Fix a non well formatted numeric value encountered & Notice: Undefined offset in fm_get_filesize() (#681) 
For non `well formatted numeric value encountered`, see #670
For `Notice: Undefined offset 9` (current implementation result) see: https://3v4l.org/1qHit#v5.0.0
For new impementation result, see: https://3v4l.org/d0UBh#v5.0.0
 2021-12-13 10:15:09 +05:30
Boris Delev 95d41a9518
Just a little fix with missing " in button HTML (#675) 
Its a little html fix- its about 1787 line- the class value it not closed.
```
<button type="button" class="btn btn-sm btn-outline-primary name="Save"
```
changed to:

```
<button type="button" class="btn btn-sm btn-outline-primary" name="Save"
```
 2021-12-03 07:16:32 +05:30
febinrev 2046bbde72
Patched the RCE (#636) 
I have patched the file upload directory traversal to Authenticated Remote Code Execution Vulnerability.
 2021-11-12 08:31:02 +05:30
Agent Smith 09e2b9a107
Fix saving of empty files (#612) 
When you have a file without content, for example when you cleared you were unable to save it because of an incorrect if-statement. This is the fix for that problem.
 2021-08-06 07:43:22 +05:30
Agent Smith 9ee41b14d6
Added some missing translations (#608) 2021-08-02 10:39:37 +05:30
schmigz 8158333d93
Update tinyfilemanager.php (#568) 
fm_get_file_mimes() was causing errors for unknown extensions as it was causing an error as array element was not defined and return value was never checked.  According to https://developer.mozilla.org/en-US/docs/Web/HTTP/Basics_of_HTTP/MIME_types/Common_types and several other resources,  application/octet-stream is the default value for all other cases. An unknown file type should use this type.   I put a check in there to use that by default so a valid value is always returned.

It might be useful to replace this function with the  built-in PHP function mime_content_type() but that adds some additional dependencies as it does not always work out of the box with PHP.
 2021-06-05 11:57:53 +05:30
sbivol e843adcf0b
Fix function name and add extensions for icons (#567) 
* Set icons for more file extensions

* Fix function name
 2021-06-05 08:33:57 +05:30
safraja f182e378e3
PHP8 fix and few other changes (#562) 2021-06-01 10:11:15 +05:30
Prasath Mani 27d7126767
Typo error fix #548 2021-05-17 15:05:46 +05:30
Prasath Mani a62bb38773 PR update and sync 2021-05-17 12:22:16 +05:30
Adrien Bonnel 603f048722
Fix PHP 5.X (#494) 
Arrays cannot be used in "define" functions with PHP versions lower than 7.X
Solution given via my professional account (ArlorNaturalScientific)
 2021-05-17 11:59:34 +05:30
Roni 9b5d2718ab
New translations (#537) 
New translations

Novas Traduções
 2021-05-17 11:55:47 +05:30
Roni db3f4c01ea
Added in preferences light or dark theme (#539) 
Added in the preferences option to change the light or dark theme,

Now to change the theme will be in the preferences / settings area, along with other settings, and may even have other themes in the future.
 2021-05-17 09:24:45 +05:30
William Gilmour c5d481c5cc
Fixed Rename with folder quotes (#534) 
Fixed the Rename functionality to work with folders that contain single quotes in them by calling `addslashes` on the path.
 2021-04-30 05:57:10 +05:30
Prasath Mani a04567d3ba Fix security issues #525 and #526 2021-04-22 13:41:35 +05:30
huntr.dev | the place to protect open source 03c3f6d7f9
Fixed 3 sinks which caused XSS in filename (#511) 
Co-authored-by: Vaibhav Shinde <vaibhavkshinde20@gmail.com>
 2021-03-22 18:26:55 +05:30
Prasath Mani 95147f5828 remove decoded php codes and code cleanup 2021-02-24 13:33:57 +05:30
ccdd13 dd9d7c09a2
Feat/mixed changes (#502) 
* remove trailing whitespace

Signed-off-by: ccdd13 <78702084+ccdd13@users.noreply.github.com>

* safe include config.php with __DIR__

* replace doc url for $datetime_format from function.date.php to datetime.format.php

Signed-off-by: ccdd13 <ccdd13@users.noreply.github.com>

* put $auth_users & $readonly_users together

Signed-off-by: ccdd13 <ccdd13@users.noreply.github.com>

* update $datetime_format

Signed-off-by: ccdd13 <ccdd13@users.noreply.github.com>

Co-authored-by: ammm ccdd12 <mamok43076@dashseat.com>
Co-authored-by: ccdd13 <ccdd13@users.noreply.github.com>
 2021-02-24 12:37:38 +05:30
Prasath Mani a19ff20768 Update vendor CDN versions 2021-02-23 11:47:57 +05:30
Peter Frost ef09231454
Fix file size display in file viewer (#475) 2020-12-23 20:46:00 +05:30
Dvash 211568ff4c
fix(actions): creating a backup in FM_ROOT_PATH (#418) 2020-08-26 03:55:13 +05:30