Kod
<?php
include_once('./co***');
include_once('./co***);
include_once('./sk***');
$skin = new skin('default');
$connect =
db_connect();
print_r($_POST);
if(isset($_POST['cid']) ||
isset($HTTP_POST_VARS['cid']))
{
for ($i = 1; $i < 9; $i++)
{
if(isset(${'foto' . $i}) && ${'foto' . $i} != '' && isset(${'foto' .
$i . '_mini'}) && ${'foto' . $i . '_mini'} != '')
{
if(!ereg('image', ${'foto' . $i . '_type'}) && !ereg('image',
${'foto' . $i . '_mini_type'}))
{
$skin->set('BLAD', 'Nieprawidłowy typ pliku');
$skin->set('GDZIE', "add.php");
$skin->setfile('blad.html');
$skin->show();
exit;
}
}
elseif(isset(${'foto' . $i}) && ${'foto' . $i} != '' && isset(${'foto' . $i
. '_mini'}) && ${'foto' . $i . '_mini'} != '')
{
if($check_mini_size)
{
$a_fsize = getimagesize(${'foto' . $i . '_mini'});
if($a_fsize[0] > $max_width || $a_fsize[1] > $max_height)
{
$skin->set('BLAD', 'Zbyt
duża miniaturka');
$skin->set('GDZIE',
"add.php");
$skin->setfile('blad.html');
$skin->show();
exit;
}
}
$a_files[] = 'foto' . $i;
}
}
if(!isset($city_id)
&& $city_new == '')
{
$skin->set('BLAD', 'Nie wybrano
miasta');
$skin->set('GDZIE', "add.php");
$skin->setfile('blad.html');
$skin->show();
exit;
}
elseif ($city_id == -1 && $city_new != '')
{
$sql =
'select city_id from ' . TABLE_PREFIX . CITY_TABLE . " where city_name =
'$city_new'";
$result = mysql_query($sql) or die($sql . '<br>' .
mysql_error());
if(mysql_num_rows($result))
{
list($city_id) = mysql_fetch_row($result);
}
else
{
$sql = 'insert into ' .
TABLE_PREFIX . CITY_TABLE . " (city_name) values ('" . $city_new . "')";
$result = mysql_query($sql) or die($sql . '<br>' .
mysql_error());
$city_id = mysql_insert_id();
}
}
if(isset($email) && $email != '' &&
!sprawdz_email($email))
{
$skin->set('BLAD',
'Nieprawidłowy format adresu email');
$skin->set('GDZIE',
"add.php");
$skin->setfile('blad.html');
$skin->show();
exit;
}
if(isset($mapka) && $mapka != '' &&
!ereg('image', $mapka_type))
{
$skin->set('BLAD',
'Nieprawidłowy typ pliku mapki');
$skin->set('GDZIE',
"add.php");
$skin->setfile('blad.html');
$skin->show();
exit;
}
if(isset($www) &&
eregi("^http://", $www))
{
$www =
ereg_replace("^http://", "", strtolower($www));
}
if(isset($ulica) && eregi("^ul.", $ulica))
{
$ulica =
ereg_replace("^ul.", "", $ulica);
}
$sql = 'select place_name
from ' . TABLE_PREFIX . PLACE_TABLE . " where place_name = '$nazwa'";
$result = mysql_query($sql) or die($sql . '<br>' . mysql_error());
if(!mysql_num_rows($result))
{
/*
foreach
($check_city as $id => $v)
{
$s_str .=
"$id;";
}
$s_str = ereg_replace(";$", '',
$s_str);
*/
if($mapka != '')
{
$s_mapka = 1;
}
else
{
$s_mapka = 0;
}
$sql = 'insert into ' . TABLE_PREFIX . PLACE_TABLE . " set place_name =
'$nazwa', place_desc = '" . trim($description) . "', cat_id = $kategoria,
city_ids = '$city_id', email = '$email', www = '$www', mapka = '$s_mapka',
street = '$ulica', zipcode = '$kod', number = '$nr', phone = '$phone',
cellphone = '$cellphone'";
$result = mysql_query($sql) or
die($sql . '<br>' . mysql_error());
$place_id =
mysql_insert_id();
if($mapka != '')
{
//$ext = substr($mapka_name, strrpos($mapka_name), '.');
move_uploaded_file($mapka, './maps/' . $place_id);
}
if(count($a_files))
{
$sql =
'select max(photo_id) from ' . TABLE_PREFIX . PHOTO_TABLE;
$result = mysql_query($sql) or die($sql . '<br>' . mysql_error());
list($max_photo_id) = mysql_fetch_row($result);
$this_id = $max_photo_id;
$files = count($a_files);
for($i = 0; $i < $files; $i++)
{
$this_id++;
$ext =
substr(${$a_files[$i] . '_name'}, strrpos(${$a_files[$i] . '_name'}, '.'));
move_uploaded_file($$a_files[$i], './photos/' .
$this_id . $ext);
$ext = substr(${$a_files[$i]
. '_mini_name'}, strrpos(${$a_files[$i] . '_mini_name'}, '.'));
move_uploaded_file(${$a_files[$i] . '_mini'}, './photos/' .
$this_id . '_mini' . $ext);
$sql = 'insert into
' . TABLE_PREFIX . PHOTO_TABLE . " set place_id = $place_id";
$result = mysql_query($sql) or die($sql . '<br>' . mysql_error());
}
}
}
}
$a_cats = get_cats();
$a_cities = get_cities();
$skin->setfile('dodaj3.html');
$skin->set('TITLE',
'urlopWpolsce.pl');
$skin->set('CID', $cid);
$skin->set('__CATS', $a_cats);
$skin->set('__POLL_CATS', $a_cats);
$skin->set('__CHECK_CITYS',
$a_cities);
$skin->show();
?>
include_once('./co***');
include_once('./co***);
include_once('./sk***');
$skin = new skin('default');
$connect =
db_connect();
print_r($_POST);
if(isset($_POST['cid']) ||
isset($HTTP_POST_VARS['cid']))
{
for ($i = 1; $i < 9; $i++)
{
if(isset(${'foto' . $i}) && ${'foto' . $i} != '' && isset(${'foto' .
$i . '_mini'}) && ${'foto' . $i . '_mini'} != '')
{
if(!ereg('image', ${'foto' . $i . '_type'}) && !ereg('image',
${'foto' . $i . '_mini_type'}))
{
$skin->set('BLAD', 'Nieprawidłowy typ pliku');
$skin->set('GDZIE', "add.php");
$skin->setfile('blad.html');
$skin->show();
exit;
}
}
elseif(isset(${'foto' . $i}) && ${'foto' . $i} != '' && isset(${'foto' . $i
. '_mini'}) && ${'foto' . $i . '_mini'} != '')
{
if($check_mini_size)
{
$a_fsize = getimagesize(${'foto' . $i . '_mini'});
if($a_fsize[0] > $max_width || $a_fsize[1] > $max_height)
{
$skin->set('BLAD', 'Zbyt
duża miniaturka');
$skin->set('GDZIE',
"add.php");
$skin->setfile('blad.html');
$skin->show();
exit;
}
}
$a_files[] = 'foto' . $i;
}
}
if(!isset($city_id)
&& $city_new == '')
{
$skin->set('BLAD', 'Nie wybrano
miasta');
$skin->set('GDZIE', "add.php");
$skin->setfile('blad.html');
$skin->show();
exit;
}
elseif ($city_id == -1 && $city_new != '')
{
$sql =
'select city_id from ' . TABLE_PREFIX . CITY_TABLE . " where city_name =
'$city_new'";
$result = mysql_query($sql) or die($sql . '<br>' .
mysql_error());
if(mysql_num_rows($result))
{
list($city_id) = mysql_fetch_row($result);
}
else
{
$sql = 'insert into ' .
TABLE_PREFIX . CITY_TABLE . " (city_name) values ('" . $city_new . "')";
$result = mysql_query($sql) or die($sql . '<br>' .
mysql_error());
$city_id = mysql_insert_id();
}
}
if(isset($email) && $email != '' &&
!sprawdz_email($email))
{
$skin->set('BLAD',
'Nieprawidłowy format adresu email');
$skin->set('GDZIE',
"add.php");
$skin->setfile('blad.html');
$skin->show();
exit;
}
if(isset($mapka) && $mapka != '' &&
!ereg('image', $mapka_type))
{
$skin->set('BLAD',
'Nieprawidłowy typ pliku mapki');
$skin->set('GDZIE',
"add.php");
$skin->setfile('blad.html');
$skin->show();
exit;
}
if(isset($www) &&
eregi("^http://", $www))
{
$www =
ereg_replace("^http://", "", strtolower($www));
}
if(isset($ulica) && eregi("^ul.", $ulica))
{
$ulica =
ereg_replace("^ul.", "", $ulica);
}
$sql = 'select place_name
from ' . TABLE_PREFIX . PLACE_TABLE . " where place_name = '$nazwa'";
$result = mysql_query($sql) or die($sql . '<br>' . mysql_error());
if(!mysql_num_rows($result))
{
/*
foreach
($check_city as $id => $v)
{
$s_str .=
"$id;";
}
$s_str = ereg_replace(";$", '',
$s_str);
*/
if($mapka != '')
{
$s_mapka = 1;
}
else
{
$s_mapka = 0;
}
$sql = 'insert into ' . TABLE_PREFIX . PLACE_TABLE . " set place_name =
'$nazwa', place_desc = '" . trim($description) . "', cat_id = $kategoria,
city_ids = '$city_id', email = '$email', www = '$www', mapka = '$s_mapka',
street = '$ulica', zipcode = '$kod', number = '$nr', phone = '$phone',
cellphone = '$cellphone'";
$result = mysql_query($sql) or
die($sql . '<br>' . mysql_error());
$place_id =
mysql_insert_id();
if($mapka != '')
{
//$ext = substr($mapka_name, strrpos($mapka_name), '.');
move_uploaded_file($mapka, './maps/' . $place_id);
}
if(count($a_files))
{
$sql =
'select max(photo_id) from ' . TABLE_PREFIX . PHOTO_TABLE;
$result = mysql_query($sql) or die($sql . '<br>' . mysql_error());
list($max_photo_id) = mysql_fetch_row($result);
$this_id = $max_photo_id;
$files = count($a_files);
for($i = 0; $i < $files; $i++)
{
$this_id++;
$ext =
substr(${$a_files[$i] . '_name'}, strrpos(${$a_files[$i] . '_name'}, '.'));
move_uploaded_file($$a_files[$i], './photos/' .
$this_id . $ext);
$ext = substr(${$a_files[$i]
. '_mini_name'}, strrpos(${$a_files[$i] . '_mini_name'}, '.'));
move_uploaded_file(${$a_files[$i] . '_mini'}, './photos/' .
$this_id . '_mini' . $ext);
$sql = 'insert into
' . TABLE_PREFIX . PHOTO_TABLE . " set place_id = $place_id";
$result = mysql_query($sql) or die($sql . '<br>' . mysql_error());
}
}
}
}
$a_cats = get_cats();
$a_cities = get_cities();
$skin->setfile('dodaj3.html');
$skin->set('TITLE',
'urlopWpolsce.pl');
$skin->set('CID', $cid);
$skin->set('__CATS', $a_cats);
$skin->set('__POLL_CATS', $a_cats);
$skin->set('__CHECK_CITYS',
$a_cities);
$skin->show();
?>
działanie skryptu to www.urlopwpolsce.pl/add3.php prosze o pomoc
