File Manager

X7ROOT File Manager

Current Path: /home/notabjze/digitalcontentmentors.com/wp-content/plugins/jetpack

home / notabjze / digitalcontentmentors.com / wp-content / plugins / jetpack /

ðŸ“ ..
ðŸ“ 3rd-party
ðŸ“„ CHANGELOG.md(715.22 KB)
ðŸ“„ LICENSE.txt(17.98 KB)
ðŸ“„ SECURITY.md(2.45 KB)
ðŸ“ _inc
ðŸ“„ class-jetpack-connection-status.php(728 B)
ðŸ“„ class-jetpack-gallery-settings.php(3.38 KB)
ðŸ“„ class-jetpack-newsletter-dashboard-widget.php(389 B)
ðŸ“„ class-jetpack-pre-connection-jitms.php(2.34 KB)
ðŸ“„ class-jetpack-stats-dashboard-widget.php(7.47 KB)
ðŸ“„ class-jetpack-xmlrpc-methods.php(7.39 KB)
ðŸ“„ class.frame-nonce-preview.php(3.22 KB)
ðŸ“„ class.jetpack-admin.php(18.49 KB)
ðŸ“„ class.jetpack-autoupdate.php(9.74 KB)
ðŸ“„ class.jetpack-cli.php(71.4 KB)
ðŸ“„ class.jetpack-client-server.php(2.62 KB)
ðŸ“„ class.jetpack-gutenberg.php(44.66 KB)
ðŸ“„ class.jetpack-heartbeat.php(4.55 KB)
ðŸ“„ class.jetpack-modules-list-table.php(14.79 KB)
ðŸ“„ class.jetpack-network-sites-list-table.php(5.98 KB)
ðŸ“„ class.jetpack-network.php(21.07 KB)
ðŸ“„ class.jetpack-plan.php(4.09 KB)
ðŸ“„ class.jetpack-post-images.php(36.73 KB)
ðŸ“„ class.jetpack-twitter-cards.php(12.92 KB)
ðŸ“„ class.jetpack-user-agent.php(25.3 KB)
ðŸ“„ class.jetpack.php(203.04 KB)
ðŸ“„ class.json-api-endpoints.php(90.79 KB)
ðŸ“„ class.json-api.php(37.32 KB)
ðŸ“„ class.photon.php(1.74 KB)
ðŸ“„ composer.json(4.08 KB)
ðŸ“ css
ðŸ“„ enhanced-open-graph.php(4.39 KB)
ðŸ“ extensions
ðŸ“„ functions.compat.php(4.31 KB)
ðŸ“„ functions.cookies.php(2.04 KB)
ðŸ“„ functions.global.php(15.38 KB)
ðŸ“„ functions.is-mobile.php(2.47 KB)
ðŸ“„ functions.opengraph.php(21.38 KB)
ðŸ“„ functions.photon.php(3.04 KB)
ðŸ“ images
ðŸ“„ jetpack.php(8.57 KB)
ðŸ“ jetpack_vendor
ðŸ“„ json-api-config.php(338 B)
ðŸ“ json-endpoints
ðŸ“„ json-endpoints.php(6.92 KB)
ðŸ“„ load-jetpack.php(3.1 KB)
ðŸ“„ locales.php(324 B)
ðŸ“ modules
ðŸ“„ readme.txt(32.74 KB)
ðŸ“ sal
ðŸ“ src
ðŸ“„ unauth-file-upload.php(5.18 KB)
ðŸ“„ uninstall.php(1.6 KB)
ðŸ“ vendor
ðŸ“ views
ðŸ“„ wpml-config.xml(1.26 KB)

Editing: unauth-file-upload.php

<?php
/**
 * Unauthenticated File Upload Helper Functions.
 *
 * @package automattic/jetpack
 */

namespace Automattic\Jetpack\UnauthFileUpload;

add_action( 'wp_ajax_jetpack_unauth_file_download', __NAMESPACE__ . '\handle_file_download' );
add_filter( 'jetpack_unauth_file_upload_get_file', __NAMESPACE__ . '\get_file_content', 10, 2 );
add_filter( 'jetpack_unauth_file_download_url', __NAMESPACE__ . '\filter_get_download_url', 10, 2 );

/**
 * Get the file download URL filter callback.
 *
 * @param string $url The file download URL.
 * @param int    $file_id The file ID.
 *
 * @return string The file download URL.
 */
function filter_get_download_url( $url, $file_id ) {
	$nonce = wp_create_nonce( 'jetpack_unauth_file_download_nonce_' . $file_id );
	return add_query_arg(
		array(
			'action'   => 'jetpack_unauth_file_download',
			'file_id'  => $file_id,
			'_wpnonce' => $nonce,
		),
		admin_url( 'admin-ajax.php' )
	);
}

/**
 * Handle file download requests from the admin page.
 *
 * @return never This method never returns as it exits directly
 */
function handle_file_download() {
	/**
	 * Check if the file is availabe for download.
	 *
	 * @since 14.6
	 *
	 * @param array $data The script data.
	 */
	$blocks_variation = apply_filters( 'jetpack_blocks_variation', \Automattic\Jetpack\Constants::get_constant( 'JETPACK_BLOCKS_VARIATION' ) );

if ( apply_filters( 'jetpack_unauth_file_download_available', $blocks_variation !== 'beta' ) ) {
		wp_die( esc_html__( 'File download is not available.', 'jetpack' ) );
	}

if ( ! current_user_can( 'edit_pages' ) ) {
		wp_die( esc_html__( 'Sorry, you are not allowed to access this page.', 'jetpack' ) );
	}

$file_id = isset( $_GET['file_id'] ) ? absint( wp_unslash( $_GET['file_id'] ) ) : 0;

if ( ! $file_id ) {
		wp_die( esc_html__( 'Invalid file request.', 'jetpack' ) );
	}

if (
		! isset( $_GET['_wpnonce'] ) ||
		! wp_verify_nonce( sanitize_text_field( wp_unslash( $_GET['_wpnonce'] ) ), 'jetpack_unauth_file_download_nonce_' . $file_id ) ) {
		wp_die( esc_html__( 'Invalid nonce.', 'jetpack' ) );
	}

/**
	 * Get the file content that we send to the user to download.
	 *
	 * @since 14.6
	 *
	 * @param array $file_content The file content.
	 * @param string $file_id The file ID.
	 *
	 * @return array|\WP_Error The file array, containing the content, name and type.
	 */
	$file = apply_filters( 'jetpack_unauth_file_upload_get_file', array(), $file_id );

if ( is_wp_error( $file ) || empty( $file ) ) {
		wp_die( esc_html__( 'Error retrieving file content.', 'jetpack' ) );
	}

// Clean output buffer
	if ( ob_get_length() ) {
		ob_clean();
	}
	// Set headers for download
	header( 'Content-Type: ' . $file['type'] );
	// Forcing the file to be downloaded is important to prevent XSS attacks.
	header( 'Content-Disposition: attachment; filename="' . sanitize_file_name( $file['name'] ) . '"' );
	header( 'Content-Length: ' . strlen( $file['content'] ) );
	header( 'Content-Transfer-Encoding: binary' );
	header( 'Cache-Control: no-cache, must-revalidate, max-age=0' );
	header( 'Pragma: no-cache' );
	header( 'Expires: 0' );

// Output file content and exit
	echo $file['content']; // phpcs:ignore WordPress.Security.EscapeOutput.OutputNotEscaped -- Binary file data
	exit;
}

/**
 * Get the file content.
 *
 * @param array   $file_content The file content, name and type.
 * @param integer $file_id The file ID.
 * @return array|\WP_Error The file content, name and type
 */
function get_file_content( $file_content, $file_id ) {
	if ( ( new \Automattic\Jetpack\Status\Host() )->is_wpcom_simple() ) {
		return $file_content;
	}

$blog_id     = \Jetpack_Options::get_option( 'id' );
	$request_url = sprintf( '/sites/%d/unauth-file-upload/%s', $blog_id, $file_id );

$response = \Automattic\Jetpack\Connection\Client::wpcom_json_api_request_as_blog(
		$request_url,
		'v2',
		array(
			'method' => 'GET',
		),
		null,
		'wpcom'
	);

$file_content = wp_remote_retrieve_body( $response );

if ( is_wp_error( $response ) || empty( $file_content ) ) {
		return new \WP_Error( 'jetpack_unauth_file_upload_error', esc_html__( 'Error retrieving file content.', 'jetpack' ) );
	}

try {
		$content = json_decode( $file_content, true, 3, defined( 'JSON_THROW_ON_ERROR' ) ? \JSON_THROW_ON_ERROR : 0 ); // phpcs:ignore PHPCompatibility.Constants.NewConstants.json_throw_on_errorFound
		if ( isset( $content['message'] ) ) {
			return new \WP_Error( 'jetpack_unauth_file_upload_error', esc_html__( 'Error retrieving file content.', 'jetpack' ) );
		}
	} catch ( \Exception $e ) { // phpcs:ignore Generic.CodeAnalysis.EmptyStatement.DetectedCatch
		// If the file is not JSON, we assume it's a binary file.
	}

$content_disposition = wp_remote_retrieve_header( $response, 'content-disposition' );
	$filename            = '';
	if ( $content_disposition ) {
		// Match the filename using a regular expression
		if ( preg_match( '/filename="([^"]+)"/', $content_disposition, $matches ) ) {
			$filename = $matches[1]; // Extract the filename
		}
	}

$type = wp_remote_retrieve_header( $response, 'content-type' );
	if ( empty( $type ) ) {
		$type = 'application/octet-stream'; // Default to binary if no content type is found
	}

return array(
		'content' => $file_content,
		'type'    => $type,
		'name'    => $filename,
	);
}

X7ROOT File Manager

Editing: unauth-file-upload.php

Upload File

Create Folder