0byt3m1n1
Path:
/
data
/
17
/
1
/
18
/
11
/
1670011
/
user
/
1801231
/
htdocs
/
metalsheetfabrication
/
admin
/
pages
/
[
Home
]
File: add_sample.php
<? if($_POST['Submit']=="Upload") { //Resume uploading if((!empty($_FILES["uploaded_file"])) && ($_FILES['uploaded_file']['error'] == 0)) { //Check if the file is JPEG image and it's size is less than 350Kb $filename = basename($_FILES['uploaded_file']['name']); $ext = strtolower(substr($filename, strrpos($filename, '.') + 1)); //echo $ext."<br>"; if($filename!="") { $inmex=$_GET['sample_type']."_"."sample_".$_GET['id'].".".$ext; //exit(); //$inmex=$filename; } else if($filename=="") { $inmex=""; } //echo $filename."<br>"; if (($ext == "doc") || ($ext == "docx") || ($ext == "pdf")) { $newname = '../uploaded_sample_files/'.$inmex; $imgspath = 'uploaded_sample_files/'.$inmex; //Check if the file with the same name is already exists on the server if (!file_exists($newname)) { //Attempt to move the uploaded file to it's new place if ((move_uploaded_file($_FILES['uploaded_file']['tmp_name'],$newname))) { //echo "<font color=#ffffff face=Verdana size=2>It's done! The file has been saved as: <b>".$newname."</b></font>"; $db_column=$_GET['sample_type']."_path"; $q_update_sample="update `tbl_sample` set `".$db_column."`='".$imgspath."' where `sample_id`='".$_GET['id']."'"; $r_update_sample=mysql_query($q_update_sample); if(!$r_update_sample) { echo mysql_error(); } else { ?> <script language="javascript" type="text/javascript"> window.location='index.php?page=sample_lists'; </script> <? } //exit(); } else { echo "Error: A problem occurred during Resume File upload!"; //exit(); } } else { echo "Error: File ".$inmex." already exists"; //exit(); } } else { echo "Error: Only .doc/.pdf File accepted for upload as Resume"; //exit(); } } else { //echo "Error: No file uploaded"; } //End of Resume uploading } ?> <table width="700" border="0" cellspacing="0" cellpadding="5" style="border:1px solid #0099FF;"> <tr> <td align="left" valign="top" bgcolor="#BBE3FF"><form action="" method="post" enctype="multipart/form-data" name="form1" style="margin:0px;"> <table width="690" border="0" cellspacing="0" cellpadding="0"> <tr> <td width="150" height="30" align="left" valign="middle" class="style5"><strong>Add <?=$_GET['sample_type']?> Sample <?=$_GET['id']?> </strong></td> <td height="30" align="left" valign="middle"><label> <input name="uploaded_file" type="file" class="style5" id="uploaded_file" size="65"> <input type="submit" name="Submit" id="Submit" value="Upload" class="style5"> </label></td> </tr> </table> </form> </td> </tr> </table><br>