File download attack

[sanvu88]

This file manager is good, but it has a dangerous bug: you can easily attack the server by dowloading files.

Ex: /laravel-filemanager/download?working_dir=%2F&type=&file=../../../../.env

[mafftor]

Wow! I've tested, it is really big fail...
Good job @sanvu88

[mafftor]

Fixed @sanvu88
mafftor/laravel-file-manager@ca56205

[streamtw]

Fixed in v2.2.0, thanks for reporting this.