Prasath Mani
e5c78e8ab9
cosmetic changes and dark theme color update
2022-11-20 19:01:08 +05:30
Prasath Mani
f8cedbcf59
Fix Security related issues
2022-11-20 16:59:29 +05:30
Prasath Mani
df80b73436
Refactor Code and Update Doc
2022-11-20 15:04:25 +05:30
Prasath Mani
8de16a4c8a
Major update on security, improved UI and bug fix.
2022-11-19 19:55:39 +00:00
Prasath Mani
4d8d4a3aba
Update tinyfilemanager.php
2022-11-07 22:48:15 +05:30
Prasath Mani
fce0f5bacb
Fix warning message
2022-11-07 22:42:07 +05:30
llcool
59c6b9b26a
Downloading file - PHP warning loop "Permission denied" ( #879 )
...
* Bugfix: Stop looping error when downloading a file with no access.
* Delete .history directory
ignore .history
2022-11-07 22:24:56 +05:30
Rizky
be49a13b8e
Fixes advanced search not working. ( #878 )
...
Fix #869
2022-11-07 22:23:01 +05:30
ririko5834
2c0e6d216e
Update tinyfilemanager.php ( #874 )
2022-10-31 21:19:21 +05:30
Prasath Mani
805308a013
remove latest version checker
2022-09-01 16:25:29 +05:30
Dmitry Efremov
2eb00ab3de
Adds json mime type as text type to allow edit json files ( #841 )
2022-08-25 09:50:39 +05:30
Agent Smith
74727fe48a
Add webm to videos ( #833 )
2022-08-06 11:17:47 +05:30
Sebjugate
3a3033bdce
Added .yml, .yaml and .toml extensions. ( #816 )
...
These are common config file extensions.
2022-07-14 07:16:02 +05:30
zedzhen
afe1227caa
Update russia translate and fix bug ( #815 )
...
* fix bug
if $calc_folder is enabled and there are insufficient permissions for one of the subfolders, then "PHP Fatal error: Uncaught RuntimeException: SplFileInfo::getSize()"
* lng() update
added lng() and delete unesed
* update russia translate
2022-07-14 07:14:54 +05:30
Saied
cda40e22f1
More accurate ip recognition ( #807 ) ( #813 )
2022-07-14 07:13:49 +05:30
Michael Horstmann
b24887d4fd
Removed unused function ( #806 )
...
To fix: Undefined constant 'FM_EXTENSION'
2022-07-07 12:01:02 +05:30
Prasath Mani
17de8af81b
PHP "divide by zero" error when unzipping 0 byte (very small) .zip files #803
2022-06-29 02:14:35 +00:00
Apichart F
50ccd29623
Fix advanced search issue for read-only user ( #785 )
...
$_POST['type']=="search" not reachable if FM_READONLY is true
2022-05-27 11:06:25 +05:30
Tanner
04c1d45b5f
resolve sorting issues, keep back button at top ( #779 )
2022-05-05 03:51:21 +05:30
Prasath Mani
ca94f23c47
Update tinyfilemanager.php
2022-04-18 12:51:55 +05:30
mclorch
a65f8ff8b5
fix download Content-Type header ( #770 )
2022-04-11 13:39:51 +05:30
Michael Milette
9b2bb18acb
Optimized and refactored fm_get_directorysize() function, and added validation. ( #720 )
2022-02-12 23:15:38 +05:30
Prasath Mani
7103691048
Fix - typo error #641
2022-02-12 13:54:22 +05:30
Prasath Mani
85821736c0
Update version
2022-02-12 13:48:19 +05:30
jicho
e474ade92b
Client IP behind proxy ( #665 )
...
Function added for IP filtering when the filemanager is hosted behind a web proxy.
I've added a function for this to the file, not sure how else to implement it since everything is one file.
2022-02-12 13:28:26 +05:30
Daniel Kranich
ad30a3a1f3
Add Global Readonly ( #158 )
...
Added a global readonly variable that will force readonly mode both when
not using the auth system and for all users if the auth system is being
used.
Co-authored-by: Prasath Mani <prasathmani@users.noreply.github.com>
2022-02-12 13:22:56 +05:30
Roni
bb1d1d3801
added name of the file being edited ( #542 )
...
added name of the file being edited and a back button in a better location
2022-02-12 13:17:35 +05:30
Daniele Paganelli
c3a2f1d604
Chunked file upload ( #714 )
...
Removes any PHP or server-side file-upload limits by using file chunks
2022-02-12 13:16:07 +05:30
joaogmauricio
154947ef83
apply fix to path traversal vulnerability ( #718 )
...
Co-authored-by: João Maurício <joao.goncalves.mauricio@pwc.com>
2022-02-12 10:34:05 +05:30
Enyedi Szilárd
3d28d8cb8e
Update tinyfilemanager.php ( #707 )
...
Changed "Folder is empty" message to be language-specific.
2022-01-28 07:43:56 +05:30
Roman Steiner
9b85951cfc
fix "400 bad request" when saving files ( #705 )
2022-01-21 08:06:27 +05:30
Suyadi
08cb4b0fce
Fix a non well formatted numeric value encountered & Notice: Undefined offset in fm_get_filesize()
( #681 )
...
For non `well formatted numeric value encountered`, see #670
For `Notice: Undefined offset 9` (current implementation result) see: https://3v4l.org/1qHit#v5.0.0
For new impementation result, see: https://3v4l.org/d0UBh#v5.0.0
2021-12-13 10:15:09 +05:30
Boris Delev
95d41a9518
Just a little fix with missing " in button HTML ( #675 )
...
Its a little html fix- its about 1787 line- the class value it not closed.
```
<button type="button" class="btn btn-sm btn-outline-primary name="Save"
```
changed to:
```
<button type="button" class="btn btn-sm btn-outline-primary" name="Save"
```
2021-12-03 07:16:32 +05:30
febinrev
2046bbde72
Patched the RCE ( #636 )
...
I have patched the file upload directory traversal to Authenticated Remote Code Execution Vulnerability.
2021-11-12 08:31:02 +05:30
Agent Smith
09e2b9a107
Fix saving of empty files ( #612 )
...
When you have a file without content, for example when you cleared you were unable to save it because of an incorrect if-statement. This is the fix for that problem.
2021-08-06 07:43:22 +05:30
Agent Smith
9ee41b14d6
Added some missing translations ( #608 )
2021-08-02 10:39:37 +05:30
schmigz
8158333d93
Update tinyfilemanager.php ( #568 )
...
fm_get_file_mimes() was causing errors for unknown extensions as it was causing an error as array element was not defined and return value was never checked. According to https://developer.mozilla.org/en-US/docs/Web/HTTP/Basics_of_HTTP/MIME_types/Common_types and several other resources, application/octet-stream is the default value for all other cases. An unknown file type should use this type. I put a check in there to use that by default so a valid value is always returned.
It might be useful to replace this function with the built-in PHP function mime_content_type() but that adds some additional dependencies as it does not always work out of the box with PHP.
2021-06-05 11:57:53 +05:30
sbivol
e843adcf0b
Fix function name and add extensions for icons ( #567 )
...
* Set icons for more file extensions
* Fix function name
2021-06-05 08:33:57 +05:30
safraja
f182e378e3
PHP8 fix and few other changes ( #562 )
2021-06-01 10:11:15 +05:30
Prasath Mani
27d7126767
Typo error fix #548
2021-05-17 15:05:46 +05:30
Prasath Mani
a62bb38773
PR update and sync
2021-05-17 12:22:16 +05:30
Adrien Bonnel
603f048722
Fix PHP 5.X ( #494 )
...
Arrays cannot be used in "define" functions with PHP versions lower than 7.X
Solution given via my professional account (ArlorNaturalScientific)
2021-05-17 11:59:34 +05:30
Roni
9b5d2718ab
New translations ( #537 )
...
New translations
Novas Traduções
2021-05-17 11:55:47 +05:30
Roni
db3f4c01ea
Added in preferences light or dark theme ( #539 )
...
Added in the preferences option to change the light or dark theme,
Now to change the theme will be in the preferences / settings area, along with other settings, and may even have other themes in the future.
2021-05-17 09:24:45 +05:30
William Gilmour
c5d481c5cc
Fixed Rename with folder quotes ( #534 )
...
Fixed the Rename functionality to work with folders that contain single quotes in them by calling `addslashes` on the path.
2021-04-30 05:57:10 +05:30
Prasath Mani
a04567d3ba
Fix security issues #525 and #526
2021-04-22 13:41:35 +05:30
huntr.dev | the place to protect open source
03c3f6d7f9
Fixed 3 sinks which caused XSS in filename ( #511 )
...
Co-authored-by: Vaibhav Shinde <vaibhavkshinde20@gmail.com>
2021-03-22 18:26:55 +05:30
Prasath Mani
95147f5828
remove decoded php codes and code cleanup
2021-02-24 13:33:57 +05:30
ccdd13
dd9d7c09a2
Feat/mixed changes ( #502 )
...
* remove trailing whitespace
Signed-off-by: ccdd13 <78702084+ccdd13@users.noreply.github.com>
* safe include config.php with __DIR__
* replace doc url for $datetime_format from function.date.php to datetime.format.php
Signed-off-by: ccdd13 <ccdd13@users.noreply.github.com>
* put $auth_users & $readonly_users together
Signed-off-by: ccdd13 <ccdd13@users.noreply.github.com>
* update $datetime_format
Signed-off-by: ccdd13 <ccdd13@users.noreply.github.com>
Co-authored-by: ammm ccdd12 <mamok43076@dashseat.com>
Co-authored-by: ccdd13 <ccdd13@users.noreply.github.com>
2021-02-24 12:37:38 +05:30
Prasath Mani
a19ff20768
Update vendor CDN versions
2021-02-23 11:47:57 +05:30