$item['pubdate'] = $pubdate; $item['price'] = 0; $item['canmany'] = 1; $item['imageurl'] = $inDB->get_field('cms_uc_items', "id={$id}", 'imageurl'); if ($inCore->inRequest('price')) { $canmany = $inCore->request('canmany', 'int', 0); $price = $inCore->request('price', 'str', '0'); $price = str_replace(',', '.', $price); $price = round($price, 2); $item['price'] = $price; $item['canmany'] = $canmany; } if (isset($_FILES["imgfile"]["name"]) && @$_FILES["imgfile"]["name"] != '') { $inCore->includeGraphics(); $tmp_name = $_FILES["imgfile"]["tmp_name"]; $imageurl = $model->getItemImageUrl($id); if ($imageurl) { @chmod(PATH . "/images/catalog/{$file}", 0777); @chmod(PATH . "/images/catalog/small/{$file}.jpg", 0777); @chmod(PATH . "/images/catalog/medium/{$file}.jpg", 0777); @unlink(PATH . "/images/catalog/{$imageurl}"); @unlink(PATH . "/images/catalog/small/{$imageurl}.jpg"); @unlink(PATH . "/images/catalog/medium/{$imageurl}.jpg"); } $file = $_FILES["imgfile"]["name"]; $path_parts = pathinfo($file); $ext = $path_parts['extension']; if (strstr($ext, 'php')) { die; } $file = md5($file . time()) . '.' . $ext;