pandorafms/pandora_console/include/get_file.php

136 lines
5.2 KiB
PHP
Raw Normal View History

<?php
2022-06-06 16:35:02 +02:00
/**
* Get File script
*
* @category File manager
* @package Pandora FMS
* @subpackage Community
* @version 1.0.0
* @license See below
*
* ______ ___ _______ _______ ________
2023-06-08 12:42:10 +02:00
* | __ \.-----.--.--.--| |.-----.----.-----. | ___| | | __|
* | __/| _ | | _ || _ | _| _ | | ___| |__ |
2022-06-06 16:35:02 +02:00
* |___| |___._|__|__|_____||_____|__| |___._| |___| |__|_|__|_______|
*
* ============================================================================
2023-06-08 11:53:13 +02:00
* Copyright (c) 2005-2023 Pandora FMS
2023-06-08 13:19:01 +02:00
* Please see https://pandorafms.com/community/ for full contribution list
2022-06-06 16:35:02 +02:00
* This program is free software; you can redistribute it and/or
* modify it under the terms of the GNU General Public License
* as published by the Free Software Foundation for version 2.
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
* ============================================================================
*/
2022-06-07 10:51:37 +02:00
// Begin.
require_once 'config.php';
require_once 'functions.php';
2022-06-07 10:51:37 +02:00
require_once 'functions_ui.php';
require_once 'functions_filemanager.php';
2018-11-21 13:08:58 +01:00
global $config;
check_login();
$auth_method = db_get_value('value', 'tconfig', 'token', 'auth');
2022-06-06 16:35:02 +02:00
if ($auth_method !== 'ad' && $auth_method !== 'ldap') {
include_once 'auth/'.$auth_method.'.php';
2018-11-19 16:33:27 +01:00
}
2022-06-07 10:51:37 +02:00
$hash = get_parameter('hash');
$file_raw = get_parameter('file');
$file = base64_decode(urldecode($file_raw));
2023-08-25 09:39:07 +02:00
$parse_all_queries = explode('&', parse_url($_SERVER['HTTP_REFERER'], PHP_URL_QUERY));
$parse_sec2_query = explode('=', $parse_all_queries[1]);
$dirname = dirname($file);
2023-08-25 09:39:07 +02:00
$path_traversal = strpos($file, '../');
2022-07-04 12:38:50 +02:00
// Avoid possible inifite loop with referer.
if (isset($_SERVER['HTTP_ORIGIN']) === false || (isset($_SERVER['HTTP_ORIGIN']) === true && $_SERVER['HTTP_REFERER'] === $_SERVER['HTTP_ORIGIN'].$_SERVER['REQUEST_URI'])) {
$refererPath = ui_get_full_url('index.php');
} else {
$refererPath = $_SERVER['HTTP_REFERER'];
}
2023-08-25 09:39:07 +02:00
if (empty($file) === true || empty($hash) === true || $hash !== md5($file_raw.$config['server_unique_identifier'])
2023-08-28 13:34:19 +02:00
|| isset($_SERVER['HTTP_REFERER']) === false || $path_traversal !== false
2023-08-25 09:39:07 +02:00
) {
2022-06-07 10:51:37 +02:00
$errorMessage = __('Security error. Please contact the administrator.');
} else {
$downloadable_file = '';
// Metaconsole have a route distinct than node.
$main_file_manager = (is_metaconsole() === true) ? 'advanced/metasetup' : 'godmode/setup/file_manager';
$main_collections = (is_metaconsole() === true) ? 'advanced/collections' : 'enterprise/godmode/agentes/collections';
if ($parse_sec2_query[0] === 'sec2') {
switch ($parse_sec2_query[1]) {
case $main_file_manager:
2020-07-17 10:01:10 +02:00
case 'operation/snmpconsole/snmp_mib_uploader':
$downloadable_file = $_SERVER['DOCUMENT_ROOT'].'/pandora_console/'.$file;
break;
case 'extensions/files_repo':
$attachment_path = io_safe_output($config['attachment_store']);
$downloadable_file = $attachment_path.'/files_repo/'.$file;
// $downloadable_file = $_SERVER['DOCUMENT_ROOT'].'/pandora_console/attachment/files_repo/'.$file;
break;
2021-06-28 18:24:10 +02:00
case 'godmode/servers/plugin':
$downloadable_file = $_SERVER['DOCUMENT_ROOT'].'/pandora_console/attachment/plugin/'.$file;
break;
case $main_collections:
$downloadable_file = $_SERVER['DOCUMENT_ROOT'].'/pandora_console/attachment/collection/'.$file;
break;
2023-08-28 13:34:19 +02:00
case 'godmode/setup/file_manager':
$downloadable_file = ($dirname === 'image') ? $_SERVER['DOCUMENT_ROOT'].'/pandora_console/'.$file : '';
default:
2022-06-07 10:51:37 +02:00
// Wrong action.
$downloadable_file = '';
break;
}
2023-08-28 13:34:19 +02:00
} else {
// Wrong action.
$downloadable_file = '';
}
2022-06-06 16:35:02 +02:00
if (empty($downloadable_file) === true || file_exists($downloadable_file) === false) {
2022-06-07 10:51:37 +02:00
$errorMessage = __('File is missing in disk storage. Please contact the administrator.');
} else {
2022-06-07 10:51:37 +02:00
// Everything went well.
header('Content-type: aplication/octet-stream;');
header('Content-type: '.mime_content_type($downloadable_file).';');
header('Content-Length: '.filesize($downloadable_file));
header('Content-Disposition: attachment; filename="'.basename($downloadable_file).'"');
readfile($downloadable_file);
return;
}
}
2022-06-07 10:51:37 +02:00
?>
<script type="text/javascript">
document.addEventListener('DOMContentLoaded', function () {
2022-06-07 13:39:58 +02:00
var refererPath = '<?php echo $refererPath; ?>';
var errorFileOutput = '<?php echo $errorMessage; ?>';
2022-07-04 12:38:50 +02:00
if(refererPath != ''){
2022-06-07 10:51:37 +02:00
document.body.innerHTML = `<form action="` + refererPath + `" name="failedReturn" method="post" style="display:none;">
2022-06-07 13:39:58 +02:00
<input type="hidden" name="errorFileOutput" value="` + errorFileOutput + `" />
2022-06-07 10:51:37 +02:00
</form>`;
document.forms['failedReturn'].submit();
2022-07-04 12:38:50 +02:00
}
2022-06-07 10:51:37 +02:00
}, false);
</script>