$v) { if (is_array($v)) { $array[$k] = add_magic_quotes($v); } else { $array[$k] = addslashes($v); } } return $array; } function validate_file($file) { if ('..' == substr($file,0,2)) die (__('Sorry, can’t edit files with ".." in the name. If you are trying to edit a file in your WordPress home directory, you can just type the name of the file in.')); if (':' == substr($file,1,1)) die (__('Sorry, can’t call files with their real path.')); if ('/' == substr($file,0,1)) $file = '.' . $file; $file = stripslashes($file); $file = str_replace('../', '', $file); return $file; } if (!get_magic_quotes_gpc()) { $_GET = add_magic_quotes($_GET); $_POST = add_magic_quotes($_POST); $_COOKIE = add_magic_quotes($_COOKIE); } $wpvarstoreset = array('action','standalone','redirect','profile','error','warning','a','file'); for ($i=0; $iYou have do not have sufficient permissions to edit templates for this blog.

')); } $newcontent = stripslashes($_POST['newcontent']); $file = $_POST['file']; $file = validate_file($file); $real_file = '../' . $file; if (is_writeable($real_file)) { $f = fopen($real_file, 'w+'); fwrite($f, $newcontent); fclose($f); header("Location: templates.php?file=$file&a=te"); } else { header("Location: templates.php?file=$file"); } exit(); break; default: require_once('admin-header.php'); update_option('recently_edited', array(1, 2, 3) ); if ($user_level <= 5) { die(__('

You have do not have sufficient permissions to edit templates for this blog.

')); } if ('' == $file) { if ('' != get_settings('blogfilename')) { $file = get_settings('blogfilename'); } else { $file = 'index.php'; } } $home = get_settings('home'); if (($home != '' && $home != get_settings('siteurl')) && ('index.php' == $file || get_settings('blogfilename') == $file || '.htaccess' == $file)) { $home_root = parse_url($home); $home_root = $home_root['path']; $root = str_replace($_SERVER["PHP_SELF"], '', $_SERVER["PATH_TRANSLATED"]); $home_root = $root . $home_root; $real_file = $home_root . '/' . $file; } else { $file = validate_file($file); $real_file = '../' . $file; } if (!is_file($real_file)) $error = 1; if ((substr($file,0,2) == 'wp') and (substr($file,-4,4) == '.php') and ($file != 'wp.php')) $warning = __(' — this is a WordPress file, be careful when editing it!'); if (!$error) { $f = fopen($real_file, 'r'); $content = fread($f, filesize($real_file)); $content = htmlspecialchars($content); // $content = str_replace("

" . sprintf(__('Editing %s'), $file) . " $warning

"; if (!$error) { ?>

"; } else { echo ""; } ?>

' . __('Oops, no such file exists! Double check the name and try again, merci.') . '

'; } ?>

writable by the server, e.g. CHMOD 666.') ?>

read()) !== false) { if ( !preg_match('|^\.+$|', $file) && preg_match('|\.php$|', $file) ) $plugin_files[] = $file; } } if ($plugins_dir || $plugin_files) : ?>

Plugin files: