case 'random':
$ext = pathinfo($file.$name, PATHINFO_EXTENSION);
$ext = strtolower($ext);
- if(in_array($ext, unserialize(CONFIG_BLOCKED_EXTENSIONS))){
- if($type==='normal'){
- include_once(CONFIG_ROOT_PATH.'error_meow.php');
- exit(0);
- }else{
- exit('File type not allowed.');
- }
- }
+ verify_extension($ext, $type);
$file_name = gen_name('random', $ext);
while(file_exists(CONFIG_FILES_PATH.$file_name)){
$file_name = gen_name('random', $ext);
$file_name = gen_name('custom_original', $name);
$ext = pathinfo($file_name, PATHINFO_EXTENSION);
$ext = strtolower($ext);
- if(in_array($ext, unserialize(CONFIG_BLOCKED_EXTENSIONS))){
- if($type==='normal'){
- include_once(CONFIG_ROOT_PATH.'error_meow.php');
- exit(0);
- }else{
- exit('File type not allowed.');
- }
- }
+ verify_extension($ext, $type);
while(file_exists(CONFIG_FILES_PATH.$file_name)){
$file_name = gen_name('custom_original', $name);
}
//Check if html or plain text should be returned
if($type==='tool'){
//Return url+filename to the user (plain text)
+ if(CONFIG_SUBUPLOAD_URL_ENABLED == "true"){
+ echo CONFIG_SUBUPLOAD_URL.'/'.urlencode($file_name);
+ }else{
echo CONFIG_ROOT_URL.'/files/'.urlencode($file_name);
+ }
exit(0);
}elseif($type==='normal'){
//Return url+filename to the user (HTML)
break;
}
}
+
+//Verify that the extension is allowed
+function verify_extension($ext, $type){
+ if(CONFIG_EXTENSION_BLOCKING_MODE === "WHITELIST") {
+ $allowed = in_array($ext, unserialize(CONFIG_ALLOWED_EXTENSIONS));
+ }else{
+ $allowed = !in_array($ext, unserialize(CONFIG_BLOCKED_EXTENSIONS));
+ }
+
+ if(!$allowed){
+ if($type==='normal'){
+ include_once(CONFIG_ROOT_PATH.'error_meow.php');
+ exit(0);
+ }else{
+ exit('File type not allowed.');
+ }
+ }
+}
projects / uguu.git / blobdiff