/usr/share/squirrelmail/src/folders_create.php is in squirrelmail 2:1.4.23~svn20120406-2.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 | <?php
/**
* folders_create.php
*
* Creates folders on the IMAP server.
* Called from folders.php
*
* @copyright 1999-2012 The SquirrelMail Project Team
* @license http://opensource.org/licenses/gpl-license.php GNU Public License
* @version $Id: folders_create.php 14248 2012-01-02 00:18:17Z pdontthink $
* @package squirrelmail
*/
/** This is the folders_create page */
define('PAGE_NAME', 'folders_create');
/**
* Path for SquirrelMail required files.
* @ignore
*/
define('SM_PATH','../');
/* SquirrelMail required files. */
require_once(SM_PATH . 'include/validate.php');
require_once(SM_PATH . 'functions/global.php');
require_once(SM_PATH . 'functions/imap.php');
require_once(SM_PATH . 'functions/display_messages.php');
/* get globals we may need */
sqgetGlobalVar('key', $key, SQ_COOKIE);
sqgetGlobalVar('username', $username, SQ_SESSION);
sqgetGlobalVar('onetimepad', $onetimepad, SQ_SESSION);
sqgetGlobalVar('delimiter', $delimiter, SQ_SESSION);
sqgetGlobalVar('folder_name', $folder_name, SQ_POST);
sqgetGlobalVar('subfolder', $subfolder, SQ_POST);
if (! sqgetGlobalVar('contain_subs', $contain_subs, SQ_POST)) {
unset($contain_subs);
}
if (!sqgetGlobalVar('smtoken',$submitted_token, SQ_POST)) {
$submitted_token = '';
}
/* end of get globals */
// first, validate security token
sm_validate_security_token($submitted_token, 3600, TRUE);
$folder_name = trim($folder_name);
if (substr_count($folder_name, '"') || substr_count($folder_name, "\\") ||
substr_count($folder_name, $delimiter) || ($folder_name == '')) {
displayPageHeader($color, 'None');
plain_error_message(_("Illegal folder name. Please select a different name.").
'<br /><a href="../src/folders.php">'._("Click here to go back").'</a>.', $color);
exit;
}
$folder_name = imap_utf7_encode_local($folder_name);
if (isset($contain_subs) && $contain_subs ) {
$folder_type = 'noselect';
} else {
$folder_type = '';
}
if ($folder_prefix && (substr($folder_prefix, -1) != $delimiter)) {
$folder_prefix = $folder_prefix . $delimiter;
}
if ($folder_prefix && (substr($subfolder, 0, strlen($folder_prefix)) != $folder_prefix)){
$subfolder_orig = $subfolder;
$subfolder = $folder_prefix . $subfolder;
} else {
$subfolder_orig = $subfolder;
}
$imapConnection = sqimap_login($username, $key, $imapServerAddress, $imapPort, 0);
if (trim($subfolder_orig) == '') {
sqimap_mailbox_create ($imapConnection, $folder_prefix.$folder_name, $folder_type);
} else {
sqimap_mailbox_create ($imapConnection, $subfolder.$delimiter.$folder_name, $folder_type);
}
sqimap_logout($imapConnection);
$location = get_location();
header ("Location: $location/folders.php?success=create");
|