X-Git-Url: https://git.p6c8.net/devedit.git/blobdiff_plain/1fbf10bec35aeb289a9cf3e1c65a826883bffdea..8ad672c3c8828a367013ff2f84b89a82cb7533b5:/devedit.pl?ds=sidebyside diff --git a/devedit.pl b/devedit.pl index f6d59c9..783013d 100644 --- a/devedit.pl +++ b/devedit.pl @@ -1,12 +1,20 @@ #!C:/Programme/Perl/bin/perl.exe -w # -# Dev-Editor 3.0 (CVS) +# Dev-Editor 3.1 # # Dev-Editor's main program # # Author: Patrick Canterino -# Last modified: 2005-06-09 +# Last modified: 2010-12-24 +# +# Copyright (C) 1999-2000 Roland Bluethgen, Frank Schoenmann +# Copyright (C) 2003-2009 Patrick Canterino +# All Rights Reserved. +# +# This file can be distributed and/or modified under the terms of +# of the Artistic License 1.0 (see also the LICENSE file found at +# the top level of the Dev-Editor distribution). # use strict; @@ -22,7 +30,7 @@ use Command; use Output; use Tool; -$VERSION = '3.0 (CVS)'; +$VERSION = '3.2-dev'; # Path to configuration file # Change if necessary! @@ -47,10 +55,17 @@ abort($config->{'errors'}->{'no_root_access'}) unless(-r $config->{'fileroot'} & my $cgi = new CGI; my $command = $cgi->param('command') || 'show'; -my $file = $cgi->param('file') || '/'; +my $file = $cgi->param('file') || $config->{'startdir'} || '/'; my $curdir = $cgi->param('curdir') || ''; my $newfile = $cgi->param('newfile') || ''; +# Check if the command is disabled + +if(is_disabled_command($config->{'disable_commands'},$command)) +{ + abort($config->{'errors'}->{'command_disabled'},'/',{COMMAND => encode_html($command)}); +} + # Create physical and virtual path for the new file my $new_physical = ''; @@ -58,7 +73,6 @@ my $new_virtual = ''; if($newfile ne '' && $newfile !~ /^\s+$/) { - $curdir = upper_path($file) if($curdir eq ''); my $path = $curdir.'/'.$newfile; # Extract file and directory name... @@ -95,7 +109,7 @@ if($newfile ne '' && $newfile !~ /^\s+$/) $new_physical = File::Spec->canonpath($new_physical.'/'.$file); $new_virtual .= $file; - # Check if the file is denied by configuration + # Check if accessing this file is forbidden if(is_forbidden_file($config->{'forbidden'},$new_virtual)) {