get_id(), api_get_user_id())) { api_not_allowed(); } $doc_url = isset($_GET['doc_url']) ? $_GET['doc_url'] : null; // Change the '&' that got rewritten to '///' by mod_rewrite back to '&' $doc_url = str_replace('///', '&', $doc_url); // Still a space present? it must be a '+' (that got replaced by mod_rewrite) $doc_url = str_replace(' ', '+', $doc_url); $doc_url = str_replace(array('../', '\\..', '\\0', '..\\'), array('', '', '', ''), $doc_url); //echo $doc_url; if (strpos($doc_url,'../') OR strpos($doc_url,'/..')) { $doc_url = ''; } $sys_course_path = api_get_path(SYS_COURSE_PATH).$_course['path'].'/scorm'; //var_dump($sys_course_path); if (is_dir($sys_course_path.$doc_url)) { api_not_allowed(); } if (Security::check_abs_path($sys_course_path.$doc_url, $sys_course_path.'/')) { $full_file_name = $sys_course_path.$doc_url; // Launch event event_download($doc_url); DocumentManager::file_send_for_download($full_file_name); } exit;