WordPress.org
Get WordPress

Plugin Directory

Changeset 3199242


Ignore:
Timestamp:
11/29/2024 06:47:05 AM (16 months ago)
Author:
modalweb
Message:

v 5.2.11 - File Sanitization issue fixes

Location:
file-manager-advanced/trunk
Files:
4 edited

Legend:

Unmodified
Added
Removed

  • file-manager-advanced/trunk/application/class_fma_connector.php

    r3157713 r3199242  
    139139 */
    140140function afm_plugin_file_validName($name) {
     141
    141142    if(!empty($name)) {
    142         $name = sanitize_file_name($name);
     143
     144        if($name !== sanitize_file_name($name)){
     145            return false;
     146        }
     147
    143148        $lower_name = strtolower($name);
    144         if(strpos($lower_name, '.php') || strpos($lower_name, '.phtml') || strpos($lower_name, '.ini') || strpos($lower_name, '.htaccess') || strpos($lower_name, 'htaccess') || strpos($lower_name, '.config') || strpos($lower_name, '.css') || strpos($lower_name, '.js')) {
     149
     150        if(
     151              strpos($lower_name, '.php') !== false
     152           || strpos($lower_name, '.phtml') !== false
     153           || strpos($lower_name, '.ini') !== false
     154           || strpos($lower_name, '.htaccess') !== false
     155           || strpos($lower_name, '.config') !== false
     156           || strpos($lower_name, '.css') !== false
     157           || strpos($lower_name, '.js') !== false
     158          ) {
    145159            return false;
    146160        } else {

  • file-manager-advanced/trunk/constants.php

    r3158333 r3199242  
    55 */
    66if ( !defined('FMA_VERSION') ) {
    7    define('FMA_VERSION', '5.2.10');
     7   define('FMA_VERSION', '5.2.11');
    88}
    99/**

  • file-manager-advanced/trunk/file_manager_advanced.php

    r3158333 r3199242  
    55  Description: Cpanel for files management in wordpress
    66  Author: modalweb
    7   Version: 5.2.10
     7  Version: 5.2.11
    88  Author URI: https://advancedfilemanager.com
    99  License: GPLv2

  • file-manager-advanced/trunk/readme.txt

    r3158333 r3199242  
    33Tags: file manager, wordpress file manager, wp file manager, file manager pro, document management,file-manager, wp-filemanager, elfinder, wp-file-manager, ftp, filemanager
    44Requires at least: 4.0
    5 Tested up to: 6.6.2
     5Tested up to: 6.7.1
    66Requires PHP: 7.0
    7 Stable tag: 5.2.10
     7Stable tag: 5.2.11
    88License: GPLv2 or later
    99License URI: http://www.gnu.org/licenses/gpl-2.0.html
     
    113113== Changelog ==
    114114
     115= 5.2.11 (24th Nov, 2024) =
     116* Fixed file sanitization issue
     117
    115118= 5.2.10 (26th Sep, 2024) =
    116119* Broken Shortcode issue fixes
Note: See TracChangeset for help on using the changeset viewer.