Nemcio/simple-file-manager
1
0
Fork 0
mirror of https://github.com/jcampbell1/simple-file-manager.git synced 2025-02-20 22:00:04 +01:00
Code Issues Packages Projects Releases Activity

Allowing symlinks

Browse Source
This commit is contained in:
John Campbell
2017-02-22 12:55:28 -05:00
parent 8177434bab
commit 60baa1c507
1 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
index.php
View File

@@ -36,9 +36,10 @@ if($PASSWORD) {
setlocale(LC_ALL,'en_US.UTF-8');
$tmp = realpath($_REQUEST['file']);
$tmp_dir = dirname($_SERVER['SCRIPT_FILENAME']);
if($tmp === false)
err(404,'File or Directory Not Found');
if(substr($tmp, 0,strlen(__DIR__)) !== __DIR__)
if(substr($tmp, 0,strlen($tmp_dir)) !== $tmp_dir)
err(403,"Forbidden");
if(!$_COOKIE['_sfm_xsrf'])