zhimengzhe / ibarn Goto Github PK

iBarn SkyDrive provides file network backup, synchronization and sharing service. This system can resume upload and down file and if someone uploads one file when you upload it too, it needn't upload any more, directly upload success. You can choose file download to local or online collection. The recycle bin function to prevent users from accidentally deleted data. While providing customized services, and the two development. the intention to contact by email [email protected] or QQ 451802973.iBarn网盘，功能强大，堪比百度网盘

Home Page: http://www.godeye.org

License: Apache License 2.0

PHP 6.13% JavaScript 46.80% CSS 5.98% HTML 39.77% ActionScript 0.16% Shell 0.08% Makefile 0.01% CoffeeScript 0.82% Go 0.07% Python 0.05% Hack 0.01% TSQL 0.13%

ibarn's Introduction

iBarn

all right reserved; Without permission, may not be used for commercial projects.
版权所有，翻版必究，未经同意不得用于商业项目

English:
iBarn SkyDrive provides file network backup, synchronization and sharing service. 
This system can resume upload and down file and if someone uploads one file 
when you upload it too, it needn't upload any more, directly upload success. 
You can choose file download to local or online collection. 
The recycle bin function to prevent users from accidentally deleted data. 

Function list:
Multi file upload, resume upload, quick upload, progress bar.
File download, dir download.
Create dir; trans file or dir; delete file or dir; share file or dir; edit file or dir.
Search file
Size icon switch
Order by name, size, upload time.
Collect
Share
Recycle bin
Recommend
Chinese and English language support
Native support for fastDfs distributed file system

Support Windows client program, very powerful, like Operating local file.
Free installation experience version corresponds to the code: iBarn-win-1.0.rar file

Chinese:
iBarn网盘是一个基于PHP开发的先进的云存储系统，
提供文件的网络备份，同步和分享服务；支持断点续传，秒传等功能；
可选择文件下载到本地或者在线收藏；回收站功能防止用户误删数据

功能列表：
多文件上传，文件断点续传，秒传，上传进度条
文件下载，文件夹下载
创建文件夹；移动文件文件夹；删除文件文件夹；分享文件文件夹；编辑文件文件夹。
搜索功能
列表大小图标切换
按照文件名称大小上传时间等排序
收藏功能，分享功能
回收站功能
中英文多语言支持

原生支持开源fastDfs分布式文件系统，可定制支持阿里云OSS 七牛云存储  亚马逊S3等文件系统
需服务器自行安装fdfs与fastdfs_client php扩展 
需修改配置文件：lib/fdfs/config.php  lib/fdfs/group.php

同时提供windows客户端程序，功能强大，像操作本地文件一样操作iBarn网盘
免安装体验版本对应代码中：iBarn-win-1.1.zip 文件

企业版（收费）附加功能：（DEMO因为服务器配置原因，有些功能看不到，原则上不提供大的定制开发，小的修改可以做）
1.单个文件迅雷下载
2.视频音频文件的在线播放
3.增加后台，提供资料与用户的管理  http://123.56.106.229:81/admin.php 用户名：test 密码：123456
4.程序健壮性，安全性有相当的提高

服务(service)

提供定制服务，二次开发，可开发票。有意者联系 [email protected] 或 QQ 451802973

While providing customized services.

the intention to contact by email [email protected] or QQ 451802973

说明(introduction)

安装非常简单，直接下载代码到web服务器根目录，用浏览器打开，输入必要信息，一键安装
点击Demo 进入企业版体验页面用户名：test 密码：123456
上传文件，生成配置文件都需要文件目录有写权限，安装时注意检查
Installation is very simple, directly download the code to the web server root directory, with the browser to open, enter the necessary information, a key installation
Click Demo to erperience the iBarn UserName:test PassWord:123456
Upload files, generate configuration files are required to write the file directory permissions, when you install, attention to check

捐赠(donation)

###打开手机通过支付宝扫描二维码捐赠本项目（支付宝账号[alipay]：[email protected]）

ibarn's People

Contributors

Stargazers

Watchers

Forkers

joliny alexguo88 swg0110 wxb5859297 zhaiyijun ccczone cnphplib sukui stevenliuit ericlin315 robot0x bingshi j717273419 jzxyouok paulnew meilunzhi lovecn zhenhuamcu waiducom badxchen xpchg jkl09 myl142857 mway08 im286er mrzeta dlpc djhuixd xrogzu zero-y hqgaofeng bobiscool station19 luckfan terminiter wangjun eramisilkan fhchina dluobo ayasecore zihua kmlxk falseor guoyu07 yang22t myphptools 545191228 rabbiesamurai xinghen91 skykain syl5005 seajean ledudu skylei ancon xiaoyunge byesoft yinweizhuzhu zhangchaoquan bd0831 ashidamana jackylau0219 jeryhu xldc-nk naruto2902git 253874 barryzpc wenwenyu guoguowei ak1343794853 zhangrui2016 gdbdzgd fusky weichangdong 1099438829 superroshan riddle911 kissthink victorshare bluarry gdiceboy 502647092 luckyjianxin cquliaoli huazhipeng myphproad lq5631 bumblezhou del-xiong roche85 yankaics lookphp joyiframe xcorp1986 lin0244 1126729585 leichaojiayou jacklin xin2893 q312700254

ibarn's Issues

懂什么叫开源？

There is a Arbitrary File Upload vulnerability that can upload a php file and be executed.

you can upload any file as avatar at " /index.php?m=user&a=avatar". Althought the server's response show that you are fail to set avatar, but the file was uploaded,And the file can be easily to locate by uid which shows in your cookies.

/action/Core.class.php

 public function upload() {
        if (!$_REQUEST['uid']) {
            echo Response::json(LACK, array(tip('用户ID不能为空')));
            exit;
        }
        $_REQUEST['name'] = self::filterName(rawurldecode(self::trimSpace($_REQUEST['name'])));
        if (!$_REQUEST['name']) {
            echo Response::json(LACK, array(tip('文件名不能为空')));
            exit;
        }
        if (!$_REQUEST['type']) {
            if (!file_exists(DATA_DIR)) {
                $res = mkdir(DATA_DIR, 0777, true);
                if (!$res) {
                    echo Response::json(FAIL, array(tip('存储目录创建失败')));
                    exit;
                }
            }
        }
        if (!file_exists(UP_DIR)) {
            $res = mkdir(UP_DIR, 0777, true);
            if (!$res) {
                echo Response::json(FAIL, array(tip('存储目录创建失败')));
                exit;
            }
        }
        include LIB_PATH . 'plupload' . DS . 'PluploadHandler.php';
        PluploadHandler::no_cache_headers();
        PluploadHandler::cors_headers();
        if (!PluploadHandler::handle(array(
            'target_dir' => UP_DIR,
            //'allow_extensions' => 'jpg,jpeg,png'
        ))) {
            echo Response::json(FAIL, array(tip('上传失败')));
            exit;
        } else {
            echo Response::json(SUCC, array(tip('上传成功')));
        }
    }

if I logined uid is 185 and my upload filename is backdoor.php. Then http://mywebsite.com/files/18/05/backdoor.php is my really backdoor.

what's more:
I think the line "//'allow_extensions' => 'jpg,jpeg,png'" is not good to be commented.

PHP7使用

我承认这个源码很好，但是不支持mysqli是个很悲催的事情。对了flash现在越来越多的设备不用了，建议去掉flash.

分享至群組功能?

請問有分享至群組的功能嗎?我似乎只看到分享給個人的部份

iBarn v1.5 has a reflected XSS vulnerability

Summary

A reflected Cross Site Scripting (XSS) vulnerability exists in iBarn v1.5 due to improper sanitization of the $search parameter in the html/index.php, html/pay.php, and html/own.php files. Although the htmlspecialchars function is used to encode HTML entities, the developers utilized the flag ENT_NOQUOTES, which does not encode single or double quotes, leading to the vulnerability.

Details

The misuse of the htmlspecialchars function allows the injection of JavaScript code into the search field, which can be exploited for XSS attacks.

html/index.php:

   <input type="text" class="form-control" id="search" name="search" value="<?php echo htmlspecialchars($_REQUEST['search'], ENT_NOQUOTES); ?>" placeholder="<?php echo t('搜你想要'); ?>">

html/pay.php:

   <input type="text" class="form-control" id="search" name="search" value="<?php echo htmlspecialchars($_REQUEST['search'], ENT_NOQUOTES); ?>" placeholder="搜你想要">

html/own.php:

   <input type="text" class="form-control" id="search" name="search" value="<?php echo htmlspecialchars($_REQUEST['search'], ENT_NOQUOTES); ?>" placeholder="<?php echo t('搜你想要'); ?>">

Proof of Concept (PoC)

http(s)://ip:port/index.php?search=1%22%20onmouseover=alert(document.cookie)%20bad=%221

Differentiation from CVE-2024-26471

This vulnerability is distinct from CVE-2024-26471 as it specifically targets the $search parameter processed through the htmlspecialchars function and then bypasses filtering.
Although CVE-2024-26471 only mentioned that the search field in html/offer.php lacks any filtering, our investigation revealed that several other pages (shareme.php, recycle.php, collection.php, pub.php, myshare.php) also do not filter the $search parameter, leading to multiple cross-site scripting (XSS) vulnerabilities.