Bug #23549 » 15728_4-3_v1.diff
| typo3/mod/tools/em/class.em_index.php (Arbeitskopie) | ||
|---|---|---|
|
// Link for downloading extension has been clicked - deliver content stream:
|
||
|
$dlFile = $this->CMD['downloadFile'];
|
||
|
if (t3lib_div::isFirstPartOfStr($dlFile,PATH_site) && t3lib_div::isFirstPartOfStr($dlFile,$absPath) && @is_file($dlFile)) {
|
||
|
if (t3lib_div::isAllowedAbsPath($dlFile) && t3lib_div::isFirstPartOfStr($dlFile, PATH_site) && t3lib_div::isFirstPartOfStr($dlFile, $absPath) && @is_file($dlFile)) {
|
||
|
$mimeType = 'application/octet-stream';
|
||
|
Header('Content-Type: '.$mimeType);
|
||
|
Header('Content-Disposition: attachment; filename='.basename($dlFile));
|
||