0byt3m1n1
Path:
/
data
/
applications
/
aps.bak
/
wordpress
/
2.6.0
/
wordpress
/
wp-admin
/
[
Home
]
File: async-upload.php
<?php /* This accepts file uploads from swfupload or other asynchronous upload methods. */ if ( defined('ABSPATH') ) require_once(ABSPATH . 'wp-load.php'); else require_once('../wp-load.php'); // Flash often fails to send cookies with the POST or upload, so we need to pass it in GET or POST instead if ( is_ssl() && empty($_COOKIE[SECURE_AUTH_COOKIE]) && !empty($_REQUEST['auth_cookie']) ) $_COOKIE[SECURE_AUTH_COOKIE] = $_REQUEST['auth_cookie']; elseif ( empty($_COOKIE[AUTH_COOKIE]) && !empty($_REQUEST['auth_cookie']) ) $_COOKIE[AUTH_COOKIE] = $_REQUEST['auth_cookie']; unset($current_user); require_once('admin.php'); header('Content-Type: text/plain; charset=' . get_option('blog_charset')); if ( !current_user_can('upload_files') ) wp_die(__('You do not have permission to upload files.')); // just fetch the detail form for that attachment if ( ($id = intval($_REQUEST['attachment_id'])) && $_REQUEST['fetch'] ) { echo get_media_item($id); exit; } check_admin_referer('media-form'); $id = media_handle_upload('async-upload', $_REQUEST['post_id']); if (is_wp_error($id)) { echo '<div id="media-upload-error">'.wp_specialchars($id->get_error_message()).'</div>'; exit; } if ( $_REQUEST['short'] ) { // short form response - attachment ID only echo $id; } else { // long form response - big chunk o html $type = $_REQUEST['type']; echo apply_filters("async_upload_{$type}", $id); } ?>