if (strstr($_GET['file'], '..')) { owpRedirect(owpLink($owpFilename['backup'])); } owpRemove(OWP_BACKUP_PATH . '/' . $_GET['file']); if (!$owpRemoveError) { $messageStack->add_session(SUCCESS_BACKUP_DELETED, 'success'); owpRedirect(owpLink($owpFilename['backup'])); } break; } } // check if the backup directory exists $dir_ok = false; if (is_dir(owpGetLocalPath(OWP_BACKUP_PATH))) { $dir_ok = true; if (!is_writeable(owpGetLocalPath(OWP_BACKUP_PATH))) { $messageStack->add(ERROR_BACKUP_DIRECTORY_NOT_WRITEABLE, 'error'); } } else { $messageStack->add(ERROR_BACKUP_DIRECTORY_DOES_NOT_EXIST, 'error'); } ?> <!doctype html public "-//W3C//DTD HTML 4.01 Transitional//EN"> <html <?php echo HTML_PARAMS; ?> > <head> <META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=<?php echo CHARSET; ?>
header('Expires: 0'); header('Pragma: no-cache'); echo $buffer; } if (CVS_DELETE_FILE == 'true') { @unlink(OWP_CSV_TEMP . $db_table_file); } owpRedirect(owpLink($owpFilename['countries'], 'page=' . $_GET['page'])); break; } } if (OWP_CSV_EXCEL == 'true') { $dir_ok = false; if (is_dir(owpGetLocalPath(OWP_CSV_TEMP))) { $dir_ok = true; if (!is_writeable(owpGetLocalPath(OWP_CSV_TEMP))) { $messageStack->add(ERROR_CSV_TEMP_DIRECTORY_NOT_WRITEABLE, 'error'); } } else { $messageStack->add(ERROR_CSV_TEMP_DIRECTORY_DOES_NOT_EXIST, 'error'); } } ?> <!doctype html public "-//W3C//DTD HTML 4.01 Transitional//EN"> <html <?php echo HTML_PARAMS; ?> > <head> <META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=<?php echo CHARSET;
} break; case 'insert': if (mkdir($current_path . '/' . $_POST['folder_name'], 0777)) { owpRedirect(owpLink($owpFilename['file_manager'], 'info=' . urlencode($_POST['folder_name']))); } break; case 'save': if ($fp = fopen($current_path . '/' . $_POST['filename'], 'w+')) { fputs($fp, stripslashes($_POST['file_contents'])); fclose($fp); owpRedirect(owpLink($owpFilename['file_manager'], 'info=' . urlencode($_POST['filename']))); } break; case 'processuploads': $_current_path = owpGetLocalPath($current_path); if (!is_writeable($_current_path)) { if (is_dir($_current_path)) { $messageStack->add_session(sprintf(ERROR_DIRECTORY_NOT_WRITEABLE, $_current_path), 'error'); } else { $messageStack->add_session(sprintf(ERROR_DIRECTORY_DOES_NOT_EXIST, $_current_path), 'error'); } } else { for ($i = 1; $i < 6; $i++) { $file = owpGetUploadedFile('file_' . $i); if (is_uploaded_file($file['tmp_name'])) { owpCopyUploadedFile($file, $_current_path); } } } owpRedirect(owpLink($owpFilename['file_manager']));