aprimoramento das validações nas ferramentas de upload

Edmar Moretti
1 parent 85e77ffb
Showing 9 changed files with 132 additions and 9 deletions Show diff stats
classesphp/funcoes_gerais.php
ferramentas/aplicarsld/upload.php
ferramentas/carregamapa/upload.php
ferramentas/importarwmc/upload.php
ferramentas/upload/upload.php
ferramentas/uploaddbf/upload.php
ferramentas/uploadgpx/upload.php
ferramentas/uploadkml/upload.php
ferramentas/uploadsimbolo/upload.php
@@ -3021,4 +3021,22 @@ function pegaProjecaoDefault($tipo=&quot;&quot;){
 		return $i3GeoProjDefault[$tipo];
 	}
 }
+/**
+ * Verifica se uma string existe em um arquivo
+ */
+function fileContemString($arq,$s){
+	if(!file_exists($arq)){
+		return false;
+	}
+	$handle = fopen($arq, 'r');
+	$valid = false; // init as false
+	while (($buffer = fgets($handle)) !== false) {
+		if (strpos($buffer, $s) !== false) {
+			$valid = TRUE;
+			break; // Once you find the string, you should break out the loop.
+		}
+	}
+	fclose($handle);
+	return $valid;
+}
 ?>
@@ -22,7 +22,7 @@ $tema = $_GET[&quot;tema&quot;];
 <body bgcolor="white" style="background-color:white;text-align:left;">
 <p>
 <?php
-if (isset($_FILES['i3GEOaplicarsld']['name']))
+if (isset($_FILES['i3GEOaplicarsld']['name']) && strlen(basename($_FILES['i3GEOaplicarsld']['name'])) < 200 )
 {
 	//$ndir = dirname($filen);
 	require_once (dirname(__FILE__)."/../../ms_configura.php");
@@ -31,11 +31,23 @@ if (isset($_FILES[&#39;i3GEOaplicarsld&#39;][&#39;name&#39;]))
 	$dirmap = dirname($map_file);
 	//verifica nomes
 	$ArquivoDest = $_FILES['i3GEOaplicarsld']['name'];
+
+	$ArquivoDest = strip_tags($ArquivoDest);
+	$ArquivoDest = htmlspecialchars($ArquivoDest, ENT_QUOTES);
+
+	$ArquivoDest = $ArquivoDest . md5(uniqid(rand(), true));
+
 	$ArquivoDest = str_replace(".sld","",$ArquivoDest).".sld";
 	verificaNome($ArquivoDest);
  
 	//sobe arquivo
 	$Arquivo = $_FILES['i3GEOaplicarsld']['tmp_name'];
+
+	$checkphp = fileContemString($_FILES['i3GEOaplicarsld']['tmp_name'],"<?");
+	if($checkphp == true){
+		exit;
+	}
+
 	$status =  move_uploaded_file($Arquivo,$dirmap."/".$ArquivoDest);
  
 	if($status != 1)
@@ -21,12 +21,15 @@ require_once (dirname(__FILE__).&quot;/../../ms_configura.php&quot;);
 <body bgcolor="white" style="background-color:white">
 <p>
 <?php
-if (isset($_FILES['i3GEOcarregamapafilemap']['name']))
+if (isset($_FILES['i3GEOcarregamapafilemap']['name']) && strlen(basename($_FILES['i3GEOcarregamapafilemap']['name'])) < 200)
 {
 	echo "<p class='paragrafo' >Carregando o arquivo...</p>";
 	$dirmap = $dir_tmp;
 	$Arquivo = $_FILES['i3GEOcarregamapafilemap']['name'];
-	$Arquivo = str_replace(".map","",$Arquivo)."_up.map";
+	$Arquivo = str_replace(".map","",$Arquivo) . md5(uniqid(rand(), true)) . "_up.map";
+
+	$Arquivo = strip_tags($Arquivo);
+	$Arquivo = htmlspecialchars($Arquivo, ENT_QUOTES);
  
 	verificaNome($Arquivo);
 	/*
@@ -36,6 +39,12 @@ if (isset($_FILES[&#39;i3GEOcarregamapafilemap&#39;][&#39;name&#39;]))
 	if($statusNome != 1)
 	{echo "<p class='paragrafo' >Arquivo inv&aacute;lido.!";paraAguarde();exit;}
 	*/
+
+	$checkphp = fileContemString($_FILES['i3GEOcarregamapafilemap']['tmp_name'],"<?");
+	if($checkphp == true){
+		exit;
+	}
+
 	$nome = basename($Arquivo);
 	$arqtemp = $dirmap."/".$Arquivo;
 	$status =  move_uploaded_file($_FILES['i3GEOcarregamapafilemap']['tmp_name'],$dirmap."/".$Arquivo);
@@ -22,14 +22,25 @@ error_reporting(0);
 require_once (dirname(__FILE__)."/../../ms_configura.php");
 $dirmap = dirname($map_file);
 $arquivo = "";
-if(isset($_FILES['i3GEOimportarwmc']['name']) && !($_POST["i3GEOimportarwmcurl"]))
+if(isset($_FILES['i3GEOimportarwmc']['name']) && !($_POST["i3GEOimportarwmcurl"]) && strlen(basename($_FILES['i3GEOimportarwmc']['name'])) < 200)
 {
 	echo "<p class='paragrafo' >Carregando o arquivo...</p>";
 	//verifica nomes
 	$ArquivoDest = $_FILES['i3GEOimportarwmc']['name'];
+	$ArquivoDest = $ArquivoDest . md5(uniqid(rand(), true));
 	$ArquivoDest = str_replace(".xml","",$ArquivoDest).".xml";
+
+	$ArquivoDest = strip_tags($ArquivoDest);
+	$ArquivoDest = htmlspecialchars($ArquivoDest, ENT_QUOTES);
+
 	verificaNome($ArquivoDest);
 	//sobe arquivo
+
+	$checkphp = fileContemString($_FILES['i3GEOimportarwmc']['tmp_name'],"<?");
+	if($checkphp == true){
+		exit;
+	}
+
 	$Arquivo = $_FILES['i3GEOimportarwmc']['tmp_name'];
 	$status =  move_uploaded_file($Arquivo,$dirmap."/".$ArquivoDest);
 	$arquivo = $dirmap."/".$_FILES['i3GEOimportarwmc']['name'];
@@ -54,12 +54,36 @@ if (isset($_FILES[&#39;i3GEOuploadshp&#39;][&#39;name&#39;]))
 	verificaNome($_FILES['i3GEOuploadshp']['name']);
 	verificaNome($_FILES['i3GEOuploadshx']['name']);
 	verificaNome($_FILES['i3GEOuploaddbf']['name']);
+
 	if($_FILES['i3GEOuploadprj']['name'] != ""){
 		verificaNome($_FILES['i3GEOuploadprj']['name']);
 	}
+
+	$checkphp = fileContemString($_FILES['i3GEOuploadprj']['tmp_name'],"<?");
+	if($checkphp == true){
+		exit;
+	}
+	$checkphp = fileContemString($_FILES['i3GEOuploadshx']['tmp_name'],"<?");
+	if($checkphp == true){
+		exit;
+	}
+	$checkphp = fileContemString($_FILES['i3GEOuploaddbf']['tmp_name'],"<?");
+	if($checkphp == true){
+		exit;
+	}
+	$checkphp = fileContemString($_FILES['i3GEOuploadshp']['tmp_name'],"<?");
+	if($checkphp == true){
+		exit;
+	}
+
+
 	//remove acentos
 	$nomePrefixo = str_replace(" ","_",removeAcentos(str_replace(".shp","",$_FILES['i3GEOuploadshp']['name'])));
-	//$nomePrefixo = $nomePrefixo."_".(nomeRandomico(4));
+
+	$nomePrefixo = strip_tags($nomePrefixo);
+	$nomePrefixo = htmlspecialchars($nomePrefixo, ENT_QUOTES);
+
+	$nomePrefixo = $nomePrefixo . md5(uniqid(rand(), true));
  
 	//sobe arquivo
 	$Arquivo = $_FILES['i3GEOuploadshp']['tmp_name'];
@@ -189,6 +213,9 @@ function paraAguarde(){
 	echo "<script>try{window.scrollTo(0,10000);window.parent.i3GEOF.upload.aguarde.visibility='hidden';}catch(e){};</script>";
 }
 function verificaNome($nome){
+	if(strlen(basename($nome)) > 200){
+		exit;
+	}
 	$nome = strtolower($nome);
 	$lista = explode(".",$nome);
 	$extensao = $lista[count($lista) - 1];
@@ -20,8 +20,13 @@ if (ob_get_level() == 0) ob_start();
 <body bgcolor="white" style="background-color:white;text-align:left;">
 <p>
 <?php
-if (isset($_FILES['i3GEOuploaddbffile']['name']))
+if (isset($_FILES['i3GEOuploaddbffile']['name']) && strlen(basename($_FILES['i3GEOuploaddbffile']['name'])) < 200 )
 {
+	$checkphp = fileContemString($_FILES['i3GEOuploaddbffile']['tmp_name'],"<?");
+	if($checkphp == true){
+		exit;
+	}
+
 	//$ndir = dirname($filen);
 	require_once (dirname(__FILE__)."/../../ms_configura.php");
 	$mapa = ms_newMapObj($map_file);
@@ -32,12 +37,19 @@ if (isset($_FILES[&#39;i3GEOuploaddbffile&#39;][&#39;name&#39;]))
 	$dirmap = dirname($map_file);
 	//verifica nomes
 	$ArquivoDest = $_FILES['i3GEOuploaddbffile']['name'];
+
+	$ArquivoDest = $ArquivoDest . md5(uniqid(rand(), true));
+
 	if($i3GEOuploaddbftipoarquivo != "dbf"){
 		$ArquivoDest = str_replace(".csv","",$ArquivoDest).".csv";
 	}
 	else{
 		$ArquivoDest = str_replace(".dbf","",$ArquivoDest).".dbf";
 	}
+
+	$ArquivoDest = strip_tags($ArquivoDest);
+	$ArquivoDest = htmlspecialchars($ArquivoDest, ENT_QUOTES);
+
 	verificaNome($ArquivoDest);
 	verificaNome($_FILES['i3GEOuploaddbffile']['name']);
 	//sobe arquivo
@@ -21,8 +21,12 @@ if (ob_get_level() == 0) ob_start();
 <body bgcolor="white" style="background-color:white;text-align:left;">
 <p>
 <?php
-if (isset($_FILES['i3GEOuploadgpx']['name']))
+if (isset($_FILES['i3GEOuploadgpx']['name']) && strlen(basename($_FILES['i3GEOuploadgpx']['name'])) < 200 )
 {
+	$checkphp = fileContemString($_FILES['i3GEOuploadgpx']['tmp_name'],"<?");
+	if($checkphp == true){
+		exit;
+	}
 	//$ndir = dirname($filen);
 	require_once (dirname(__FILE__)."/../../ms_configura.php");
 	$mapa = ms_newMapObj($map_file);
@@ -33,7 +37,12 @@ if (isset($_FILES[&#39;i3GEOuploadgpx&#39;][&#39;name&#39;]))
 	$dirmap = dirname($map_file);
 	//verifica nomes
 	$ArquivoDest = $_FILES['i3GEOuploadgpx']['name'];
+	$ArquivoDest = $ArquivoDest . md5(uniqid(rand(), true));
 	$ArquivoDest = str_replace(".gpx","",$ArquivoDest).".gpx";
+
+	$ArquivoDest = strip_tags($ArquivoDest);
+	$ArquivoDest = htmlspecialchars($ArquivoDest, ENT_QUOTES);
+
 	verificaNome($ArquivoDest);
  
 	//sobe arquivo
@@ -23,8 +23,12 @@ if (ob_get_level() == 0) ob_start();
 <body bgcolor="white" style="background-color:white;text-align:left;">
 <p>
 <?php
-if (isset($_FILES['i3GEOuploadkml']['name']))
+if (isset($_FILES['i3GEOuploadkml']['name']) && strlen(basename($_FILES['i3GEOuploadkml']['name'])) < 200 )
 {
+	$checkphp = fileContemString($_FILES['i3GEOuploadkml']['tmp_name'],"<?");
+	if($checkphp == true){
+		exit;
+	}
 	//$ndir = dirname($filen);
 	require_once (dirname(__FILE__)."/../../ms_configura.php");
 	$mapa = ms_newMapObj($map_file);
@@ -35,7 +39,12 @@ if (isset($_FILES[&#39;i3GEOuploadkml&#39;][&#39;name&#39;]))
 	$dirmap = dirname($map_file);
 	//verifica nomes
 	$ArquivoDest = $_FILES['i3GEOuploadkml']['name'];
+	$ArquivoDest = $ArquivoDest . md5(uniqid(rand(), true));
 	$ArquivoDest = str_replace(".kml","",$ArquivoDest).".kml";
+
+	$ArquivoDest = strip_tags($ArquivoDest);
+	$ArquivoDest = htmlspecialchars($ArquivoDest, ENT_QUOTES);
+
 	verificaNome($ArquivoDest);
  
 	//sobe arquivo
@@ -18,7 +18,13 @@ if (ob_get_level() == 0) ob_start();
 <body bgcolor="white" style="background-color:white;text-align:left;">
 <p>
 <?php
-if (isset($_FILES['i3GEOuploadsimboloarq']['name'])){
+if (isset($_FILES['i3GEOuploadsimboloarq']['name']) && strlen(basename($_FILES['i3GEOuploadsimboloarq']['name'])) < 200){
+
+	$checkphp = fileContemString($_FILES['i3GEOuploadkml']['tmp_name'],"<?");
+	if($checkphp == true){
+		exit;
+	}
+
 	require_once (dirname(__FILE__)."/../../ms_configura.php");
 	echo "<p class='paragrafo' >Carregando o arquivo...</p>";
 	ob_flush();
@@ -43,11 +49,21 @@ if (isset($_FILES[&#39;i3GEOuploadsimboloarq&#39;][&#39;name&#39;])){
  
 	$nome = str_replace(".png","",$nome).".png";
  
+	$nome = strip_tags($nome);
+	$nome = htmlspecialchars($nome, ENT_QUOTES);
+
+	$nome = $nome . md5(uniqid(rand(), true));
+
 	verificaNome($nome);
 	//sobe arquivo
 	$Arquivo = $_FILES['i3GEOuploadsimboloarq']['tmp_name'];
 	$destino = $dirDestino."/".$nome;
  
+	$check = getimagesize($Arquivo);
+	if($check === false) {
+		exit;
+	}
+
 	if(file_exists($destino))
 	{echo "<p class='paragrafo' >J&aacute; existe um arquivo com o nome ".$destino;paraAguarde();exit;}
 	$status =  move_uploaded_file($Arquivo,$destino);
...	...	@@ -3021,4 +3021,22 @@ function pegaProjecaoDefault($tipo=""){
3021	3021	return $i3GeoProjDefault[$tipo];
3022	3022	}
3023	3023	}
	3024	+/**
	3025	+ * Verifica se uma string existe em um arquivo
	3026	+ */
	3027	+function fileContemString($arq,$s){
	3028	+ if(!file_exists($arq)){
	3029	+ return false;
	3030	+ }
	3031	+ $handle = fopen($arq, 'r');
	3032	+ $valid = false; // init as false
	3033	+ while (($buffer = fgets($handle)) !== false) {
	3034	+ if (strpos($buffer, $s) !== false) {
	3035	+ $valid = TRUE;
	3036	+ break; // Once you find the string, you should break out the loop.
	3037	+ }
	3038	+ }
	3039	+ fclose($handle);
	3040	+ return $valid;
	3041	+}
3024	3042	?>
...	...
...	...	@@ -22,7 +22,7 @@ $tema = $_GET["tema"];
22	22	<body bgcolor="white" style="background-color:white;text-align:left;">
23	23	<p>
24	24	<?php
25		-if (isset($_FILES['i3GEOaplicarsld']['name']))
	25	+if (isset($_FILES['i3GEOaplicarsld']['name']) && strlen(basename($_FILES['i3GEOaplicarsld']['name'])) < 200 )
26	26	{
27	27	//$ndir = dirname($filen);
28	28	require_once (dirname(__FILE__)."/../../ms_configura.php");
...	...	@@ -31,11 +31,23 @@ if (isset($_FILES['i3GEOaplicarsld']['name']))
31	31	$dirmap = dirname($map_file);
32	32	//verifica nomes
33	33	$ArquivoDest = $_FILES['i3GEOaplicarsld']['name'];
	34	+
	35	+ $ArquivoDest = strip_tags($ArquivoDest);
	36	+ $ArquivoDest = htmlspecialchars($ArquivoDest, ENT_QUOTES);
	37	+
	38	+ $ArquivoDest = $ArquivoDest . md5(uniqid(rand(), true));
	39	+
34	40	$ArquivoDest = str_replace(".sld","",$ArquivoDest).".sld";
35	41	verificaNome($ArquivoDest);
36	42
37	43	//sobe arquivo
38	44	$Arquivo = $_FILES['i3GEOaplicarsld']['tmp_name'];
	45	+
	46	+ $checkphp = fileContemString($_FILES['i3GEOaplicarsld']['tmp_name'],"<?");
	47	+ if($checkphp == true){
	48	+ exit;
	49	+ }
	50	+
39	51	$status = move_uploaded_file($Arquivo,$dirmap."/".$ArquivoDest);
40	52
41	53	if($status != 1)
...	...
...	...	@@ -21,12 +21,15 @@ require_once (dirname(__FILE__)."/../../ms_configura.php");
21	21	<body bgcolor="white" style="background-color:white">
22	22	<p>
23	23	<?php
24		-if (isset($_FILES['i3GEOcarregamapafilemap']['name']))
	24	+if (isset($_FILES['i3GEOcarregamapafilemap']['name']) && strlen(basename($_FILES['i3GEOcarregamapafilemap']['name'])) < 200)
25	25	{
26	26	echo "<p class='paragrafo' >Carregando o arquivo...</p>";
27	27	$dirmap = $dir_tmp;
28	28	$Arquivo = $_FILES['i3GEOcarregamapafilemap']['name'];
29		- $Arquivo = str_replace(".map","",$Arquivo)."_up.map";
	29	+ $Arquivo = str_replace(".map","",$Arquivo) . md5(uniqid(rand(), true)) . "_up.map";
	30	+
	31	+ $Arquivo = strip_tags($Arquivo);
	32	+ $Arquivo = htmlspecialchars($Arquivo, ENT_QUOTES);
30	33
31	34	verificaNome($Arquivo);
32	35	/*
...	...	@@ -36,6 +39,12 @@ if (isset($_FILES['i3GEOcarregamapafilemap']['name']))
36	39	if($statusNome != 1)
37	40	{echo "<p class='paragrafo' >Arquivo inválido.!";paraAguarde();exit;}
38	41	*/
	42	+
	43	+ $checkphp = fileContemString($_FILES['i3GEOcarregamapafilemap']['tmp_name'],"<?");
	44	+ if($checkphp == true){
	45	+ exit;
	46	+ }
	47	+
39	48	$nome = basename($Arquivo);
40	49	$arqtemp = $dirmap."/".$Arquivo;
41	50	$status = move_uploaded_file($_FILES['i3GEOcarregamapafilemap']['tmp_name'],$dirmap."/".$Arquivo);
...	...
...	...	@@ -22,14 +22,25 @@ error_reporting(0);
22	22	require_once (dirname(__FILE__)."/../../ms_configura.php");
23	23	$dirmap = dirname($map_file);
24	24	$arquivo = "";
25		-if(isset($_FILES['i3GEOimportarwmc']['name']) && !($_POST["i3GEOimportarwmcurl"]))
	25	+if(isset($_FILES['i3GEOimportarwmc']['name']) && !($_POST["i3GEOimportarwmcurl"]) && strlen(basename($_FILES['i3GEOimportarwmc']['name'])) < 200)
26	26	{
27	27	echo "<p class='paragrafo' >Carregando o arquivo...</p>";
28	28	//verifica nomes
29	29	$ArquivoDest = $_FILES['i3GEOimportarwmc']['name'];
	30	+ $ArquivoDest = $ArquivoDest . md5(uniqid(rand(), true));
30	31	$ArquivoDest = str_replace(".xml","",$ArquivoDest).".xml";
	32	+
	33	+ $ArquivoDest = strip_tags($ArquivoDest);
	34	+ $ArquivoDest = htmlspecialchars($ArquivoDest, ENT_QUOTES);
	35	+
31	36	verificaNome($ArquivoDest);
32	37	//sobe arquivo
	38	+
	39	+ $checkphp = fileContemString($_FILES['i3GEOimportarwmc']['tmp_name'],"<?");
	40	+ if($checkphp == true){
	41	+ exit;
	42	+ }
	43	+
33	44	$Arquivo = $_FILES['i3GEOimportarwmc']['tmp_name'];
34	45	$status = move_uploaded_file($Arquivo,$dirmap."/".$ArquivoDest);
35	46	$arquivo = $dirmap."/".$_FILES['i3GEOimportarwmc']['name'];
...	...
...	...	@@ -54,12 +54,36 @@ if (isset($_FILES['i3GEOuploadshp']['name']))
54	54	verificaNome($_FILES['i3GEOuploadshp']['name']);
55	55	verificaNome($_FILES['i3GEOuploadshx']['name']);
56	56	verificaNome($_FILES['i3GEOuploaddbf']['name']);
	57	+
57	58	if($_FILES['i3GEOuploadprj']['name'] != ""){
58	59	verificaNome($_FILES['i3GEOuploadprj']['name']);
59	60	}
	61	+
	62	+ $checkphp = fileContemString($_FILES['i3GEOuploadprj']['tmp_name'],"<?");
	63	+ if($checkphp == true){
	64	+ exit;
	65	+ }
	66	+ $checkphp = fileContemString($_FILES['i3GEOuploadshx']['tmp_name'],"<?");
	67	+ if($checkphp == true){
	68	+ exit;
	69	+ }
	70	+ $checkphp = fileContemString($_FILES['i3GEOuploaddbf']['tmp_name'],"<?");
	71	+ if($checkphp == true){
	72	+ exit;
	73	+ }
	74	+ $checkphp = fileContemString($_FILES['i3GEOuploadshp']['tmp_name'],"<?");
	75	+ if($checkphp == true){
	76	+ exit;
	77	+ }
	78	+
	79	+
60	80	//remove acentos
61	81	$nomePrefixo = str_replace(" ","_",removeAcentos(str_replace(".shp","",$_FILES['i3GEOuploadshp']['name'])));
62		- //$nomePrefixo = $nomePrefixo."_".(nomeRandomico(4));
	82	+
	83	+ $nomePrefixo = strip_tags($nomePrefixo);
	84	+ $nomePrefixo = htmlspecialchars($nomePrefixo, ENT_QUOTES);
	85	+
	86	+ $nomePrefixo = $nomePrefixo . md5(uniqid(rand(), true));
63	87
64	88	//sobe arquivo
65	89	$Arquivo = $_FILES['i3GEOuploadshp']['tmp_name'];
...	...	@@ -189,6 +213,9 @@ function paraAguarde(){
189	213	echo "<script>try{window.scrollTo(0,10000);window.parent.i3GEOF.upload.aguarde.visibility='hidden';}catch(e){};</script>";
190	214	}
191	215	function verificaNome($nome){
	216	+ if(strlen(basename($nome)) > 200){
	217	+ exit;
	218	+ }
192	219	$nome = strtolower($nome);
193	220	$lista = explode(".",$nome);
194	221	$extensao = $lista[count($lista) - 1];
...	...
...	...	@@ -20,8 +20,13 @@ if (ob_get_level() == 0) ob_start();
20	20	<body bgcolor="white" style="background-color:white;text-align:left;">
21	21	<p>
22	22	<?php
23		-if (isset($_FILES['i3GEOuploaddbffile']['name']))
	23	+if (isset($_FILES['i3GEOuploaddbffile']['name']) && strlen(basename($_FILES['i3GEOuploaddbffile']['name'])) < 200 )
24	24	{
	25	+ $checkphp = fileContemString($_FILES['i3GEOuploaddbffile']['tmp_name'],"<?");
	26	+ if($checkphp == true){
	27	+ exit;
	28	+ }
	29	+
25	30	//$ndir = dirname($filen);
26	31	require_once (dirname(__FILE__)."/../../ms_configura.php");
27	32	$mapa = ms_newMapObj($map_file);
...	...	@@ -32,12 +37,19 @@ if (isset($_FILES['i3GEOuploaddbffile']['name']))
32	37	$dirmap = dirname($map_file);
33	38	//verifica nomes
34	39	$ArquivoDest = $_FILES['i3GEOuploaddbffile']['name'];
	40	+
	41	+ $ArquivoDest = $ArquivoDest . md5(uniqid(rand(), true));
	42	+
35	43	if($i3GEOuploaddbftipoarquivo != "dbf"){
36	44	$ArquivoDest = str_replace(".csv","",$ArquivoDest).".csv";
37	45	}
38	46	else{
39	47	$ArquivoDest = str_replace(".dbf","",$ArquivoDest).".dbf";
40	48	}
	49	+
	50	+ $ArquivoDest = strip_tags($ArquivoDest);
	51	+ $ArquivoDest = htmlspecialchars($ArquivoDest, ENT_QUOTES);
	52	+
41	53	verificaNome($ArquivoDest);
42	54	verificaNome($_FILES['i3GEOuploaddbffile']['name']);
43	55	//sobe arquivo
...	...
...	...	@@ -21,8 +21,12 @@ if (ob_get_level() == 0) ob_start();
21	21	<body bgcolor="white" style="background-color:white;text-align:left;">
22	22	<p>
23	23	<?php
24		-if (isset($_FILES['i3GEOuploadgpx']['name']))
	24	+if (isset($_FILES['i3GEOuploadgpx']['name']) && strlen(basename($_FILES['i3GEOuploadgpx']['name'])) < 200 )
25	25	{
	26	+ $checkphp = fileContemString($_FILES['i3GEOuploadgpx']['tmp_name'],"<?");
	27	+ if($checkphp == true){
	28	+ exit;
	29	+ }
26	30	//$ndir = dirname($filen);
27	31	require_once (dirname(__FILE__)."/../../ms_configura.php");
28	32	$mapa = ms_newMapObj($map_file);
...	...	@@ -33,7 +37,12 @@ if (isset($_FILES['i3GEOuploadgpx']['name']))
33	37	$dirmap = dirname($map_file);
34	38	//verifica nomes
35	39	$ArquivoDest = $_FILES['i3GEOuploadgpx']['name'];
	40	+ $ArquivoDest = $ArquivoDest . md5(uniqid(rand(), true));
36	41	$ArquivoDest = str_replace(".gpx","",$ArquivoDest).".gpx";
	42	+
	43	+ $ArquivoDest = strip_tags($ArquivoDest);
	44	+ $ArquivoDest = htmlspecialchars($ArquivoDest, ENT_QUOTES);
	45	+
37	46	verificaNome($ArquivoDest);
38	47
39	48	//sobe arquivo
...	...
...	...	@@ -23,8 +23,12 @@ if (ob_get_level() == 0) ob_start();
23	23	<body bgcolor="white" style="background-color:white;text-align:left;">
24	24	<p>
25	25	<?php
26		-if (isset($_FILES['i3GEOuploadkml']['name']))
	26	+if (isset($_FILES['i3GEOuploadkml']['name']) && strlen(basename($_FILES['i3GEOuploadkml']['name'])) < 200 )
27	27	{
	28	+ $checkphp = fileContemString($_FILES['i3GEOuploadkml']['tmp_name'],"<?");
	29	+ if($checkphp == true){
	30	+ exit;
	31	+ }
28	32	//$ndir = dirname($filen);
29	33	require_once (dirname(__FILE__)."/../../ms_configura.php");
30	34	$mapa = ms_newMapObj($map_file);
...	...	@@ -35,7 +39,12 @@ if (isset($_FILES['i3GEOuploadkml']['name']))
35	39	$dirmap = dirname($map_file);
36	40	//verifica nomes
37	41	$ArquivoDest = $_FILES['i3GEOuploadkml']['name'];
	42	+ $ArquivoDest = $ArquivoDest . md5(uniqid(rand(), true));
38	43	$ArquivoDest = str_replace(".kml","",$ArquivoDest).".kml";
	44	+
	45	+ $ArquivoDest = strip_tags($ArquivoDest);
	46	+ $ArquivoDest = htmlspecialchars($ArquivoDest, ENT_QUOTES);
	47	+
39	48	verificaNome($ArquivoDest);
40	49
41	50	//sobe arquivo
...	...
...	...	@@ -18,7 +18,13 @@ if (ob_get_level() == 0) ob_start();
18	18	<body bgcolor="white" style="background-color:white;text-align:left;">
19	19	<p>
20	20	<?php
21		-if (isset($_FILES['i3GEOuploadsimboloarq']['name'])){
	21	+if (isset($_FILES['i3GEOuploadsimboloarq']['name']) && strlen(basename($_FILES['i3GEOuploadsimboloarq']['name'])) < 200){
	22	+
	23	+ $checkphp = fileContemString($_FILES['i3GEOuploadkml']['tmp_name'],"<?");
	24	+ if($checkphp == true){
	25	+ exit;
	26	+ }
	27	+
22	28	require_once (dirname(__FILE__)."/../../ms_configura.php");
23	29	echo "<p class='paragrafo' >Carregando o arquivo...</p>";
24	30	ob_flush();
...	...	@@ -43,11 +49,21 @@ if (isset($_FILES['i3GEOuploadsimboloarq']['name'])){
43	49
44	50	$nome = str_replace(".png","",$nome).".png";
45	51
	52	+ $nome = strip_tags($nome);
	53	+ $nome = htmlspecialchars($nome, ENT_QUOTES);
	54	+
	55	+ $nome = $nome . md5(uniqid(rand(), true));
	56	+
46	57	verificaNome($nome);
47	58	//sobe arquivo
48	59	$Arquivo = $_FILES['i3GEOuploadsimboloarq']['tmp_name'];
49	60	$destino = $dirDestino."/".$nome;
50	61
	62	+ $check = getimagesize($Arquivo);
	63	+ if($check === false) {
	64	+ exit;
	65	+ }
	66	+
51	67	if(file_exists($destino))
52	68	{echo "<p class='paragrafo' >Já existe um arquivo com o nome ".$destino;paraAguarde();exit;}
53	69	$status = move_uploaded_file($Arquivo,$destino);
...	...