eXtplorer - PHP-based File Manager: Issueshttp://extplorer.net/http://extplorer.net/favicon.ico?16960560042016-11-10T13:38:33ZeXtplorer - a PHP-based File Manager
Redmine Fehler #333 (Gelöst): webdav display UPPER/CASE/FULL/PATH with some webdav clienthttp://extplorer.net/issues/3332016-11-10T13:38:33ZDaniel Roche
<p>Hello,</p>
<p>when accessing to extplorer by webdav the files and directory are displayed in upper case and with the full path.</p>
<p>it happen only with some linux client : <br /> - nemo ( cinnamon desktop )<br /> - thunar ( xfce desktop )</p>
<p>it does not happen with cadaver CLI tools, nor with windows explorer<br />( i haven't tested unity/ubuntu nor gnome/nautilus )</p>
<p>i guess this behavior shows because theses tools are displaying the displayname property <br />instead of the path .</p>
<p>however, it seems quite easy to fix :</p>
<pre><code>in libraries/HTTP/WebDAV/Server/Filesystem.php<br /> replace ( line 215 )</code></pre>
<pre><code>$info["props"][] = $this->mkprop("displayname", strtoupper($path));</code></pre>
<pre><code>by </code></pre>
<pre><code>$info["props"][] = $this->mkprop("displayname", basename($path));</code></pre>
<p>and folders and files are properly displayed.<br />i have tested ok with : <br />- windows explorer<br />- thunar<br />- nemo<br />- cadaver<br />- macOS finder</p>
<p>Best regards</p> Fehler #332 (Gelöst): standalone extplorer webdav does not work with PHP7http://extplorer.net/issues/3322016-11-08T08:52:00ZDaniel Roche
<p>webdav use the mysql_connect function wich is no longer available in PHP 7 !</p> Fehler #205 (Gelöst): CVE-2016-4313: archive path traversal vulnerability in extplorer 2.1.9http://extplorer.net/issues/2052016-07-31T11:07:57ZEmilio Pozuelo Monfort
<p>Hi,</p>
<p>I haven't found an issue or a fix for this on your site, so I'm forwarding this in case you weren't aware. There was an archive path traversal vulnerability. It has been assigned CVE-2016-4313. For more details see:</p>
<p><a class="external" href="https://www.exploit-db.com/exploits/39816/">https://www.exploit-db.com/exploits/39816/</a></p> Fehler #202 (Gelöst): Archive Extracthttp://extplorer.net/issues/2022016-07-01T07:20:33ZCraig Lawriesupport@dngtech.com.au
<p>Users with read only permissions are still able to extract archives.<br />In my opinion, this should not be allowed.</p>