Version 3.3b released

Version 3.3b is out now. Compared to 3.2 this version has some new functionality. It is now possible to download an entire directoy in one go. The phpWebFTP script will download all individual files, add them to a zip file and sends the zip file to the user. Furthermore the script is more secure than the previous versions. All variables are posted (rather then the get method).
IMPORTANT:
arko.dhar has discovered a vulnerability in phpWebFTP, which can be exploited by malicious people to disclose sensitive information. Input passed to to the "language" parameter in index.php wasn't properly verified, before it is used to include files. This can be exploited to include arbitrary files from local resources.

Successful exploitation requires that "magic_quotes_gpc" is disabled.

The vulnerability has been confirmed in all version before 3.3a.

The current release that can be downloaded from my website http://www.v-wijk.net I strongly advise all users to download the latest release.