Exemple #1
0
<?php

/* $Id$ */
$content = '';
$metadata = array("is_published" => "Is this from a published source?", "title_whole" => "Book/Joural Title", "title_part" => "Article/Chapter Title", "author" => "Author", "pagerange" => "Pages", "publisher" => "Publisher", "pubyear" => "Pub. Year", "isbn" => "ISBN/ISSN");
ob_start();
session_start();
// include all necessary files
include "includes.inc.php";
include "sniffer.inc.php";
include "objects/objects.inc.php";
//$siteObj = new site ($site);
//if ($_SESSION['ltype'] != 'admin') exit;
db_connect($dbhost, $dbuser, $dbpass, $dbdb);
if ($_REQUEST['delete']) {
    deleteuserfile($_REQUEST['filetodelete']);
    printerr2();
}
$sitelist = array();
$owner = $_REQUEST[owner];
$editor = $_REQUEST[editor];
$site = $_SESSION[settings][site];
$order = $_REQUEST[order];
$lowerlimit = $_REQUEST[lowerlimit];
$user = $_REQUEST[user];
$name = $_REQUEST[name];
$upload = $_REQUEST[upload];
/* if (isset($_SESSION[settings][sitename])) { */
/* 	$site = $_SESSION[settings][sitename]; */
/* } else if (isset($_SESSION[settings][site])) { */
/* 	$site = $_SESSION[settings][site]; */
        //$filename = urlencode($filename);
        //echo $filename;
        //exit;
        $extension = strtolower(strrchr($filename, "."));
        $badextensions = array(".php", ".php3", ".php4", ".php5", ".bat", ".com", ".pl", ".p", ".exe");
        if (in_array($extension, $badextensions)) {
            unset($_REQUEST["action"]);
        } else {
            if (storeuploadedfile("uploaded_file", "ufiles/{$userid}/" . $filename, "public")) {
            } else {
                unset($_REQUEST["action"]);
            }
        }
    } else {
        if ($_REQUEST["action"] == "delete_file") {
            deleteuserfile($userid, $_REQUEST["item_name"]);
        }
    }
}
?>
<!DOCTYPE html>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<title><?php 
echo $strings["title"];
?>
</title>


<script language="javascript" type="text/javascript" src="<?php 
/* FCKeditor custom filebrowser for Segue (based on filebrower.php,v 1.3.7 */
/* $Id$ */
$content = '';
ob_start();
session_start();
// include all necessary files
include "../config.inc.php";
include "../includes.inc.php";
include "../sniffer.inc.php";
include "../objects/objects.inc.php";
//$siteObj = new site ($site);
//if ($_SESSION['ltype'] != 'admin') exit;
db_connect($dbhost, $dbuser, $dbpass, $dbdb);
if ($delete) {
    deleteuserfile($filetodelete);
    printerr2();
}
$sitelist = array();
$owner = $_REQUEST[owner];
$editor = $_REQUEST[editor];
$site = $_SESSION[settings][site];
$order = $_REQUEST[order];
/* if (isset($_SESSION[settings][sitename])) { */
/* 	$site = $_SESSION[settings][sitename]; */
/* } else if (isset($_SESSION[settings][site])) { */
/* 	$site = $_SESSION[settings][site]; */
/* } */
//printpre($_SESSION[settings]);
//printpre($_REQUEST);
if ($_REQUEST[site]) {