2003-05-22 14:12:53 +02:00
< ? php
/* b2 File Upload - original hack by shockingbird.com */
$standalone = " 1 " ;
2003-12-11 01:22:36 +01:00
require_once ( " ./admin-header.php " );
2003-05-22 14:12:53 +02:00
if ( $user_level == 0 ) //Checks to see if user has logged in
die ( " Cheatin' uh ? " );
if ( ! $use_fileupload ) //Checks if file upload is enabled in the config
die ( " The admin disabled this function " );
2003-10-17 21:26:05 +02:00
$allowed_types = explode ( " " , trim ( $fileupload_allowedtypes ));
2003-05-22 14:12:53 +02:00
?> <html>
< head >
2003-10-08 19:28:25 +02:00
< title > WordPress :: upload images / files </ title >
2003-05-22 14:12:53 +02:00
< link rel = " stylesheet " href = " <?php echo $b2inc ; ?>/b2.css " type = " text/css " >
< style type = " text/css " >
<!--
body {
background - image : url ( ' < ? php
if ( $is_gecko || $is_macIE ) {
2003-12-11 01:22:36 +01:00
?> ../wp-images/bgbookmarklet3.gif<?php
2003-05-22 14:12:53 +02:00
} else {
2003-12-11 01:22:36 +01:00
?> ../wp-images/bgbookmarklet3.gif<?php
2003-05-22 14:12:53 +02:00
}
?> ');
background - repeat : no - repeat ;
margin : 30 px ;
}
< ? php
if ( ! $is_NS4 ) {
?>
textarea , input , select {
background - color : white ;
/*< ? php if ( $is_gecko || $is_macIE ) { ?>
2003-12-11 01:22:36 +01:00
background - image : url ( '../wp-images/bgbookmarklet3.gif' );
2003-05-22 14:12:53 +02:00
< ? php } elseif ( $is_winIE ) { ?>
background - color : #cccccc;
filter : alpha ( opacity : 80 );
< ? php } ?>
*/ border - width : 1 px ;
border - color : #cccccc;
border - style : solid ;
padding : 2 px ;
margin : 1 px ;
}
< ? php if ( ! $is_gecko ) { ?>
. checkbox {
border - width : 0 px ;
border - color : transparent ;
border - style : solid ;
padding : 0 px ;
margin : 0 px ;
}
. uploadform {
background - color : white ;
< ? php if ( $is_winIE ) { ?>
filter : alpha ( opacity : 100 );
< ? php } ?>
border - width : 1 px ;
border - color : #333333;
border - style : solid ;
padding : 2 px ;
margin : 1 px ;
width : 265 px ;
height : 24 px ;
}
< ? php } ?>
< ? php
}
?>
-->
</ style >
< script type = " text/javascript " >
<!-- // idocs.com's popup tutorial rules !
function targetopener ( blah , closeme , closeonly ) {
if ( ! ( window . focus && window . opener )) return true ;
window . opener . focus ();
if ( ! closeonly ) window . opener . document . post . content . value += blah ;
if ( closeme ) window . close ();
return false ;
}
//-->
</ script >
</ head >
< body >
< table align = " center " width = " 100% " height = " 100% " cellpadding = " 15 " cellspacing = " 0 " border = " 1 " style = " border-width: 1px; border-color: #cccccc; " >
< tbody >
< tr >
2003-12-11 01:22:36 +01:00
< td valign = " top " style = " background-color: transparent; <?php if ( $is_gecko || $is_macIE ) { ?>background-image: url('../wp-images/bgbookmarklet3.gif');<?php } elseif ( $is_winIE ) { ?>background-color: #cccccc; filter: alpha(opacity:60);<?php } ?>; " >
2003-05-22 14:12:53 +02:00
< ? php
if ( ! $HTTP_POST_VARS [ " submit " ]) {
2003-10-17 21:26:05 +02:00
$i = implode ( " , " , $allowed_types );
?>
2003-05-22 14:12:53 +02:00
< p >< strong > File upload </ strong ></ p >
< p > You can upload files of type :< br />< em >< ? php echo $i ?> </em></p>
< p > The maximum size of the file should be :< br />< em >< ? php echo $fileupload_maxk ?> KB</em></p>
2003-12-11 01:22:36 +01:00
< form action = " upload.php " method = " post " enctype = " multipart/form-data " >
2003-05-22 14:12:53 +02:00
< input type = " hidden " name = " MAX_FILE_SIZE " value = " <?php echo $fileupload_maxk *1024 ?> " />
< input type = " file " name = " img1 " size = " 30 " class = " uploadform " />
< br />< br />
Description :< br />
< input type = " text " name = " imgdesc " size = " 30 " class = " uploadform " />
< br />< br />
< input type = " submit " name = " submit " value = " upload ! " class = " search " />
</ form >
</ td >
</ tr >
</ tbody >
</ table >
</ body >
</ html >< ? php die ();
}
?>
< ? php //Makes sure they choose a file
//print_r($HTTP_POST_FILES);
//die();
if ( ! empty ( $HTTP_POST_VARS )) { //$img1_name != "") {
$imgalt = ( isset ( $HTTP_POST_VARS [ 'imgalt' ])) ? $HTTP_POST_VARS [ 'imgalt' ] : $imgalt ;
$img1_name = ( strlen ( $imgalt )) ? $HTTP_POST_VARS [ 'imgalt' ] : $HTTP_POST_FILES [ 'img1' ][ 'name' ];
$img1_type = ( strlen ( $imgalt )) ? $HTTP_POST_VARS [ 'img1_type' ] : $HTTP_POST_FILES [ 'img1' ][ 'type' ];
$imgdesc = str_replace ( '"' , '&quot;' , $HTTP_POST_VARS [ 'imgdesc' ]);
$imgtype = explode ( " . " , $img1_name );
2003-10-17 21:26:05 +02:00
$imgtype = $imgtype [ count ( $imgtype ) - 1 ];
2003-05-22 14:12:53 +02:00
2003-10-17 21:26:05 +02:00
if ( in_array ( $imgtype , $allowed_types ) == false ) {
2003-05-22 14:12:53 +02:00
die ( " File $img1_name of type $imgtype is not allowed. " );
}
if ( strlen ( $imgalt )) {
$pathtofile = $fileupload_realpath . " / " . $imgalt ;
$img1 = $HTTP_POST_VARS [ 'img1' ];
} else {
$pathtofile = $fileupload_realpath . " / " . $img1_name ;
$img1 = $HTTP_POST_FILES [ 'img1' ][ 'tmp_name' ];
}
// makes sure not to upload duplicates, rename duplicates
$i = 1 ;
$pathtofile2 = $pathtofile ;
$tmppathtofile = $pathtofile2 ;
$img2_name = $img1_name ;
while ( file_exists ( $pathtofile2 )) {
$pos = strpos ( $tmppathtofile , '.' . trim ( $imgtype ));
$pathtofile_start = substr ( $tmppathtofile , 0 , $pos );
$pathtofile2 = $pathtofile_start . '_' . zeroise ( $i ++ , 2 ) . '.' . trim ( $imgtype );
$img2_name = explode ( '/' , $pathtofile2 );
$img2_name = $img2_name [ count ( $img2_name ) - 1 ];
}
if ( file_exists ( $pathtofile ) && ! strlen ( $imgalt )) {
$i = explode ( " " , $fileupload_allowedtypes );
$i = implode ( " , " , array_slice ( $i , 1 , count ( $i ) - 2 ));
2003-10-08 19:28:25 +02:00
$moved = move_uploaded_file ( $img1 , $pathtofile2 );
// if move_uploaded_file() fails, try copy()
if ( ! $moved ) {
$moved = copy ( $img1 , $pathtofile2 );
}
2003-10-08 19:41:54 +02:00
if ( ! $moved ) {
2003-10-08 19:28:25 +02:00
die ( " Couldn't Upload Your File to $pathtofile2 . " );
2003-10-08 19:41:54 +02:00
} else {
@ unlink ( $img1 );
}
2003-05-22 14:12:53 +02:00
// duplicate-renaming function contributed by Gary Lawrence Murphy
?>
< p >< strong > Duplicate File ? </ strong ></ p >
< p >< b >< em > The filename '<?php echo $img1_name; ?>' already exists !</ em ></ b ></ p >
< p > filename '<?php echo $img1; ?>' moved to '<?php echo "$pathtofile2 - $img2_name"; ?>' </ p >
< p > Confirm or rename :</ p >
2003-12-11 01:22:36 +01:00
< form action = " upload.php " method = " post " enctype = " multipart/form-data " >
2003-05-22 14:12:53 +02:00
< input type = " hidden " name = " MAX_FILE_SIZE " value = " <?php echo $fileupload_maxk *1024 ?> " />
< input type = " hidden " name = " img1_type " value = " <?php echo $img1_type ;?> " />
< input type = " hidden " name = " img1_name " value = " <?php echo $img2_name ;?> " />
2003-10-17 21:26:05 +02:00
< input type = " hidden " name = " img1_size " value = " <?php echo $img1_size ;?> " />
2003-05-22 14:12:53 +02:00
< input type = " hidden " name = " img1 " value = " <?php echo $pathtofile2 ;?> " />
Alternate name :< br />< input type = " text " name = " imgalt " size = " 30 " class = " uploadform " value = " <?php echo $img2_name ;?> " />< br />
< br />
Description :< br />< input type = " text " name = " imgdesc " size = " 30 " class = " uploadform " value = " <?php echo $imgdesc ;?> " />
< br />
< input type = " submit " name = " submit " value = " confirm ! " class = " search " />
</ form >
</ td >
</ tr >
</ tbody >
</ table >
</ body >
</ html >< ? php die ();
}
if ( ! strlen ( $imgalt )) {
2003-10-08 19:28:25 +02:00
@ $moved = move_uploaded_file ( $img1 , $pathtofile ); //Path to your images directory, chmod the dir to 777
// move_uploaded_file() can fail if open_basedir in PHP.INI doesn't
// include your tmp directory. Try copy instead?
if ( ! moved ) {
$moved = copy ( $img1 , $pathtofile );
}
// Still couldn't get it. Give up.
2003-10-08 19:41:54 +02:00
if ( ! moved ) {
2003-10-08 19:28:25 +02:00
die ( " Couldn't Upload Your File to $pathtofile . " );
2003-10-08 19:41:54 +02:00
} else {
@ unlink ( $img1 );
}
2003-05-22 14:12:53 +02:00
} else {
rename ( $img1 , $pathtofile )
or die ( " Couldn't Upload Your File to $pathtofile . " );
}
}
if ( ereg ( 'image/' , $img1_type )) {
2003-10-01 00:37:04 +02:00
$piece_of_code = " <img src=" $fileupload_url / $img1_name " alt=" $imgdesc " /> " ;
2003-05-22 14:12:53 +02:00
} else {
$piece_of_code = " <a href=" $fileupload_url / $img1_name " title=" $imgdesc " /> $imgdesc </a> " ;
};
?>
< p >< strong > File uploaded !</ strong ></ p >
< p > Your file < b >< ? php echo " $img1_name " ; ?> </b> was uploaded successfully !</p>
< p > Here ' s the code to display it :</ p >
< p >< form >
<!--< textarea cols = " 25 " rows = " 3 " wrap = " virtual " >< ? php echo " <img src=" $fileupload_url / $img1_name " border="0" alt="" /> " ; ?> </textarea>-->
< input type = " text " name = " imgpath " value = " <?php echo $piece_of_code ; ?> " size = " 38 " style = " padding: 5px; margin: 2px; " />< br />
< input type = " button " name = " close " value = " Add the code to your post ! " class = " search " onClick = " targetopener('<?php echo $piece_of_code ; ?>') " style = " margin: 2px; " />
</ form >
</ p >
< p >< strong > Image Details </ strong >: < br />
name :
< ? php echo " $img1_name " ; ?>
< br />
size :
< ? php echo round ( $img1_size / 1024 , 2 ); ?> KB
< br />
type :
< ? php echo " $img1_type " ; ?>
</ p >
< p align = " right " >
< form >
< input type = " button " name = " close " value = " Close this window " class = " search " onClick = " window.close() " />
</ form >
</ p >
</ td >
</ tr >
</ tbody >
</ table >
</ body >
2003-10-17 21:26:05 +02:00
</ html >