JEMBOT MAWOT Bypass Shell

Current Path : /home/cinepatreb/billetterie/src/Core/Addon/Theme/
Upload File :
Current File : /home/cinepatreb/billetterie/src/Core/Addon/Theme/ThemeZipUploader.php

<?php
/**
 * Copyright since 2007 PrestaShop SA and Contributors
 * PrestaShop is an International Registered Trademark & Property of PrestaShop SA
 *
 * NOTICE OF LICENSE
 *
 * This source file is subject to the Open Software License (OSL 3.0)
 * that is bundled with this package in the file LICENSE.md.
 * It is also available through the world-wide-web at this URL:
 * https://opensource.org/licenses/OSL-3.0
 * If you did not receive a copy of the license and are unable to
 * obtain it through the world-wide-web, please send an email
 * to license@prestashop.com so we can send you a copy immediately.
 *
 * DISCLAIMER
 *
 * Do not edit or add to this file if you wish to upgrade PrestaShop to newer
 * versions in the future. If you wish to customize PrestaShop for your
 * needs please refer to https://devdocs.prestashop.com/ for more information.
 *
 * @author    PrestaShop SA and Contributors <contact@prestashop.com>
 * @copyright Since 2007 PrestaShop SA and Contributors
 * @license   https://opensource.org/licenses/OSL-3.0 Open Software License (OSL 3.0)
 */

namespace PrestaShop\PrestaShop\Core\Addon\Theme;

use PrestaShop\PrestaShop\Core\Addon\Theme\Exception\ThemeUploadException;
use PrestaShop\PrestaShop\Core\ConfigurationInterface;
use Symfony\Component\HttpFoundation\File\UploadedFile;

/**
 * Class ThemeZipUploader uploads theme to local filesystem.
 */
final class ThemeZipUploader implements ThemeUploaderInterface
{
    /**
     * @var ConfigurationInterface
     */
    private $configuration;

    /**
     * @param ConfigurationInterface $configuration
     */
    public function __construct(ConfigurationInterface $configuration)
    {
        $this->configuration = $configuration;
    }

    /**
     * {@inheritdoc}
     */
    public function upload(UploadedFile $uploadedTheme)
    {
        $this->assertThemeWasUploadedWithoutErrors($uploadedTheme);
        $this->assertUploadedFileIsZip($uploadedTheme);

        $themesDir = $this->configuration->get('_PS_ALL_THEMES_DIR_');
        $destination = $themesDir . $uploadedTheme->getClientOriginalName();

        if (!preg_match('/^[a-zA-Z0-9_.-]+$/', $uploadedTheme->getClientOriginalName())) {
            $destination = $themesDir . sha1_file($uploadedTheme->getPathname()) . '.zip';
        }

        move_uploaded_file(
            $uploadedTheme->getPathname(),
            $destination
        );

        return $destination;
    }

    /**
     * @param UploadedFile $uploadedTheme
     *
     * @throws ThemeUploadException
     */
    private function assertThemeWasUploadedWithoutErrors(UploadedFile $uploadedTheme)
    {
        if (UPLOAD_ERR_OK === $uploadedTheme->getError()) {
            return;
        }

        if (in_array($uploadedTheme->getError(), [UPLOAD_ERR_INI_SIZE, UPLOAD_ERR_FORM_SIZE])) {
            throw new ThemeUploadException('Allowed file size exceeded for uploaded theme.', ThemeUploadException::FILE_SIZE_EXCEEDED_ERROR);
        }

        throw new ThemeUploadException(sprintf('Unknown error "%s" occurred while uploading theme.', $uploadedTheme->getError()), ThemeUploadException::UNKNOWN_ERROR);
    }

    /**
     * @param UploadedFile $uploadedTheme
     *
     * @throws ThemeUploadException
     */
    private function assertUploadedFileIsZip(UploadedFile $uploadedTheme)
    {
        preg_match('#application/zip#', $uploadedTheme->getMimeType(), $matches);

        if (empty($matches)) {
            throw new ThemeUploadException('Invalid mime type of theme zip. Allowed mime type is application/zip.', ThemeUploadException::INVALID_MIME_TYPE);
        }
    }
}

xxxxx1.0, XXX xxxx