?
GR0V Shell
GR0V shell
Linux www.koreapackagetour.com 2.6.32-042stab145.3 #1 SMP Thu Jun 11 14:05:04 MSK 2020 x86_64
<?php
/*
* @package Joomla 1.5
* @copyright Copyright (C) 2005 Open Source Matters. All rights reserved.
* @license http://www.gnu.org/copyleft/gpl.html GNU/GPL, see LICENSE.php
*
* @component Phoca Gallery
* @copyright Copyright (C) Jan Pavelka www.phoca.cz
* @license http://www.gnu.org/copyleft/gpl.html GNU/GPL
*/
defined('_JEXEC') or die( 'Restricted access' );
jimport('joomla.client.helper');
jimport('joomla.filesystem.file');
jimport('joomla.filesystem.folder');
class PhocaGalleryCpControllerPhocaGalleryu extends PhocaGalleryCpController
{
function __construct() {
parent::__construct();
// Register Extra tasks
$this->registerTask( 'upload' , 'upload');
$this->registerTask( 'createfolder' , 'createfolder');
$this->registerTask( 'javaupload' , 'javaupload');
}
/*
* Folder
*/
function createfolder() {
global $mainframe;
// Check for request forgeries
JRequest::checkToken() or jexit( 'Invalid Token' );
// Set FTP credentials, if given
jimport('joomla.client.helper');
JClientHelper::setCredentialsFromRequest('ftp');
$paramsC = JComponentHelper::getParams('com_phocagallery');
$folder_permissions = $paramsC->get( 'folder_permissions', 0755 );
//$folder_permissions = octdec((int)$folder_permissions);
$path = PhocaGalleryPath::getPath();
$folderNew = JRequest::getCmd( 'foldername', '');
$folderCheck = JRequest::getVar( 'foldername', null, '', 'string', JREQUEST_ALLOWRAW);
$parent = JRequest::getVar( 'folderbase', '', '', 'path' );
$viewBack = JRequest::getVar( 'viewback', '', '', '' );
$link = '';
switch ($viewBack) {
case 'phocagalleryi':
$link = 'index.php?option=com_phocagallery&view=phocagalleryi&tmpl=component&folder='.$parent;
break;
case 'phocagallerym':
$link = 'index.php?option=com_phocagallery&view=phocagallerym&layout=form&hidemainmenu=1&folder='.$parent;
break;
case 'phocagalleryf':
$link = 'index.php?option=com_phocagallery&view=phocagalleryf&tmpl=component&folder='.$parent;
break;
default:
$mainframe->redirect('index.php?option=com_phocagallery', 'Controller U Error');
break;
}
JRequest::setVar('folder', $parent);
if (($folderCheck !== null) && ($folderNew !== $folderCheck)) {
$mainframe->redirect($link, JText::_('WARNDIRNAME'));
}
if (strlen($folderNew) > 0) {
$folder = JPath::clean($path->image_abs.DS.$parent.DS.$folderNew);
if (!JFolder::exists($folder) && !JFile::exists($folder)) {
//@JFolder::create($path, $folder_permissions );
switch((int)$folder_permissions) {
case 777:
@JFolder::create($folder, 0777 );
break;
case 705:
@JFolder::create($folder, 0705 );
break;
case 666:
@JFolder::create($folder, 0666 );
break;
case 644:
@JFolder::create($folder, 0644 );
break;
case 755:
default:
@JFolder::create($folder, 0755 );
break;
}
if (isset($folder)) {
@JFile::write($folder.DS."index.html", "<html>\n<body bgcolor=\"#FFFFFF\">\n</body>\n</html>");
}
$mainframe->redirect($link, JText::_('Folder Created'));
} else {
$mainframe->redirect($link, JText::_('Folder exists'));
}
//JRequest::setVar('folder', ($parent) ? $parent.'/'.$folder : $folder);
}
$mainframe->redirect($link);
}
/*
* Java Upload
* To test messages disable both name="afterUploadURL" in form_javaupload exit( 'ERROR: ' . $errUploadMsg);
*/
function javaupload() {
global $mainframe;
// Check for request forgeries
JRequest::checkToken( 'request' ) or jexit( 'Invalid Token' );
$errUploadMsg = '';
if (!PhocaGalleryCpControllerPhocaGalleryu::_realJavaUpload($errUploadMsg) ) {
exit( 'ERROR: '.$errUploadMsg);
} else {
exit( 'SUCCESS');
}
}
function _realJavaUpload(&$errUploadMsg) {
global $mainframe;
// Check for request forgeries
JRequest::checkToken( 'request' ) or jexit( 'Invalid Token' );
foreach ($_FILES as $file => $fileArray) {
echo('File key: '. $file . "\n");
foreach ($fileArray as $item=>$val) {
echo(' Data received: ' . $item.'=>'.$val . "\n");
}
if (!PhocaGalleryCpControllerPhocaGalleryu::_uploadJava($errUploadMsg, $fileArray)) {
$errUploadMsg = JText::_($errUploadMsg);
return false;
}
}
return true;
}
function _uploadJava(&$errUploadMsg, $file = '') {
global $mainframe;
// Check for request forgeries
JRequest::checkToken( 'request' ) or jexit( 'Invalid Token' );
// Set FTP credentials, if given
$ftp =& JClientHelper::setCredentialsFromRequest('ftp');
$path = PhocaGalleryPath::getPath();
$folder = JRequest::getVar( 'folder', '', '', 'path' );
// Make the filename safe
if (isset($file['name'])) {
$file['name'] = JFile::makeSafe($file['name']);
}
if (isset($file['name'])) {
$filepath = JPath::clean($path->image_abs.$folder.DS.strtolower($file['name']));
if (!PhocaGalleryFileUpload::canUpload( $file, $errUploadMsg )) {
$errUploadMsg = JText::_($errUploadMsg);
return false;
}
if (JFile::exists($filepath)) {
$errUploadMsg = JText::_('Error. File already exists');
return false;
}
if (!JFile::upload($file['tmp_name'], $filepath)) {
$errUploadMsg = JText::_('Error. Unable to upload file');
return false;
}
return true;
} else {
$errUploadMsg = JText::_('Error. Unable to upload file');
return false;
}
}
/*
* Standard Upload
* Flash Upload
*/
function upload() {
global $mainframe;
// Check for request forgeries
JRequest::checkToken( 'request' ) or jexit( 'Invalid Token' );
// Set FTP credentials, if given
$ftp =& JClientHelper::setCredentialsFromRequest('ftp');
$path = PhocaGalleryPath::getPath();
$file = JRequest::getVar( 'Filedata', '', 'files', 'array' );
$folder = JRequest::getVar( 'folder', '', '', 'path' );
$format = JRequest::getVar( 'format', 'html', '', 'cmd');
$return = JRequest::getVar( 'return-url', null, 'post', 'base64' );
$viewBack = JRequest::getVar( 'viewback', '', '', '' );
$errUploadMsg = '';
// Make the filename safe
if (isset($file['name'])) {
$file['name'] = JFile::makeSafe($file['name']);
}
// All HTTP header will be overwritten with js message
if (isset($file['name'])) {
$filepath = JPath::clean($path->image_abs.$folder.DS.strtolower($file['name']));
if (!PhocaGalleryFileUpload::canUpload( $file, $errUploadMsg )) {
if ($format == 'json') {
switch ($errUploadMsg) {
case 'WARNFILETOOLARGE':
header('HTTP/1.0 413 Request Entity Too Large');
jexit(JText::_($errUploadMsg));
break;
case 'PHOCAGALLERY_WARNFILETOOLARGERESOLUTION':
header('HTTP/1.0 413 Request Entity Too Large');
jexit(JText::_($errUploadMsg));
break;
default:
header('HTTP/1.0 415 Unsupported Media Type');
jexit(JText::_($errUploadMsg));
break;
}
} else {
JError::raiseNotice(100, JText::_($errUploadMsg));
// REDIRECT
if ($return) {
$mainframe->redirect(base64_decode($return).'&folder='.$folder);
}
return;
}
}
if (JFile::exists($filepath)) {
if ($format == 'json') {
header('HTTP/1.0 409 Conflict');
jexit('Error. File already exists');
} else {
JError::raiseNotice(100, JText::_('Error. File already exists'));
// REDIRECT
if ($return) {
$mainframe->redirect(base64_decode($return).'&folder='.$folder);
}
return;
}
}
if (!JFile::upload($file['tmp_name'], $filepath)) {
if ($format == 'json') {
header('HTTP/1.0 406 Not Acceptable');
jexit('Error. Unable to upload file');
} else {
JError::raiseWarning(100, JText::_('Error. Unable to upload file'));
// REDIRECT
if ($return) {
$mainframe->redirect(base64_decode($return).'&folder='.$folder);
}
return;
}
} else {
if ($format == 'json') {
header('HTTP/1.0 400');// With 400 error will be not displayed (?? - ok)
jexit('Upload complete');
} else {
$mainframe->enqueueMessage(JText::_('Phoca Gallery, Upload complete'));
// REDIRECT
if ($return) {
$mainframe->redirect(base64_decode($return).'&folder='.$folder);
}
return;
}
}
} else {
$msg = JText::_('WARNFILETYPE');
if ($format == 'json') {
header('HTTP/1.0 415 Unsupported Media Type');
jexit('Error. Unable to upload file');
} else {
if ($return) {
$mainframe->redirect(base64_decode($return).'&folder='.$folder, $msg);
} else {
switch ($viewBack) {
case 'phocagalleryi':
$mainframe->redirect('index.php?option=com_phocagallery&view=phocagalleryi&tmpl=component&folder='.$folder, $msg);
break;
case 'phocagallerym':
$mainframe->redirect('index.php?option=com_phocagallery&view=phocagallerym&layout=form&hidemainmenu=1&folder='.$folder, $msg);
break;
default:
$mainframe->redirect('index.php?option=com_phocagallery', $msg);
break;
}
}
}
}
}
}
T1KUS90T