if (!defined('IN_DISCUZ')) { exit('Access Denied'); } if (empty($_G['gp_ftn_formhash']) || empty($_G['uid']) || empty($_G['gp_filesize']) || empty($_G['gp_sha1']) || empty($_G['gp_filename'])) { if (empty($_G['gp_allcount']) && empty($_G['gp_uploadedcount']) && empty($_G['gp_errorcount'])) { exit; //echo $_G['gp_allcount'].'|'.$_G['gp_uploadedcount'].'|'.$_G['gp_errorcount']; } else { if ($_G['gp_allcount'] == $_G['gp_uploadedcount'] + $_G['gp_errorcount']) { $allowUpdate = 1; } else { $allowUpdate = 0; } include template('xf_storage:cross'); } } elseif ($_G['gp_ftn_formhash'] != ftn_formhash()) { exit; //showmessage('操作超时或者数据来源错误','','error'); } if ($_G['gp_ftn_submit']) { $data = array(); $index = array(); $filesize = intval($_G['gp_filesize']); $filename = diconv(trim($_G['gp_filename']), 'UTF-8'); $filename = str_replace(array('\'', '"', '\\/', '\\', '<', '>'), array('', '', '', '', '', ''), $filename); $sha = trim($_G['gp_sha1']); $index = array('tid' => 0, 'pid' => 0, 'uid' => $_G['uid'], 'tableid' => '127', 'downloads' => 0); $aid = DB::insert('forum_attachment', $index, 1); $data = array('aid' => $aid, 'uid' => $_G['uid'], 'dateline' => $_G['timestamp'], 'filename' => $filename, 'filesize' => $filesize, 'attachment' => '', 'remote' => 0, 'isimage' => 0, 'width' => 0, 'thumb' => 0, 'sha1' => $sha); $aid = DB::insert('forum_attachment_unused', $data, 1); if (empty($_G['gp_allcount']) && empty($_G['gp_uploadedcount']) && empty($_G['gp_errorcount'])) {
<?php /** * [Discuz!] (C)2001-2099 Comsenz Inc. * This is NOT a freeware, use is subject to license terms * * $Id: ftn_upload.inc.php 29021 2012-03-22 09:35:55Z songlixin $ */ if (!defined('IN_DISCUZ')) { exit('Access Denied'); } $formhash = formhash(); if ($_G['gp_formhash'] == $formhash && $_G['gp_inajax']) { $iframeurl = make_iframe_url(ftn_formhash()); } else { $iframeurl = ''; } include template('xf_storage:upload');