0byt3m1n1
Path:
/
data
/
applications
/
aps.bak
/
tikiwiki
/
1.9.7-31
/
htdocs
/
[
Home
]
File: jhot.php
<?php // $Header: /cvsroot/tikiwiki/tiki/jhot.php,v 1.8.2.9 2006/09/05 14:00:45 sylvieg Exp $ // Copyright (c) 2002-2005, Luis Argerich, Garland Foster, Eduardo Polidor, et. al. // All Rights Reserved. See copyright.txt for details and a complete list of authors. // Licensed under the GNU LESSER GENERAL PUBLIC LICENSE. See license.txt for details. # $Header: /cvsroot/tikiwiki/tiki/jhot.php,v 1.8.2.9 2006/09/05 14:00:45 sylvieg Exp $ include_once ('tiki-setup.php'); include_once ('lib/drawings/drawlib.php'); if (($tiki_p_admin_drawings != 'y') && ($tiki_p_edit_drawings != 'y') && ($feature_drawings != 'y')) { die; } if (isset($_FILES['filepath']) && is_uploaded_file($_FILES['filepath']['tmp_name'])) { $size = $_FILES['filepath']['size']; $name = $_FILES['filepath']['name']; $type = $_FILES['filepath']['type']; $pos = strpos($name, 'img/wiki/'); $name = substr($name, $pos); if ($tikidomain) { $absolute_name = str_replace("img/wiki/$tikidomain/", '', $name); } else { $absolute_name = str_replace("img/wiki/", '', $name); } $absolute_name = str_replace('.gif', '', $absolute_name); $absolute_name = str_replace('.pad_xml', '', $absolute_name); $now = date("U"); if (substr($name,-4,4) == '.gif') { $hash = $absolute_name . md5(uniqid('.')). '.gif'; } elseif (substr($name,-8,8) == '.pad_xml') { $hash = $absolute_name . md5(uniqid('.')). '.pad_xml'; } else { die(); } if (strstr($name, '.pad_xml')) { $drawlib->update_drawing($absolute_name, $hash, $user); } else { $drawlib->set_drawing_gif($absolute_name, $hash); } if ($tikidomain) { $hash = "$tikidomain/$hash"; $name = "$tikidomain/$name"; } @$fw = fopen("img/wiki/$hash", "wb"); @$fw2 = fopen("img/wiki/$name", "wb"); @$fp = fopen($_FILES['filepath']['tmp_name'], "rb"); while (!feof($fp)) { $data = fread($fp, 8192 * 16); fwrite($fw, $data); fwrite($fw2, $data); } fclose ($fp); fclose ($fw); fclose ($fw2); } ?>