# echo HEADING_TITLE; ?> </td> <td class="pageHeading" align="right"><?php echo oos_draw_separator('trans.gif', HEADING_IMAGE_WIDTH, HEADING_IMAGE_HEIGHT); ?> </td> </tr> </table></td> </tr> <tr> <td> <?php if (is_uploaded_file($usrfl['tmp_name'])) { oos_get_copy_uploaded_file($usrfl, OOS_UPDATE_PATH); echo "<p class=smallText>"; echo 'File uploaded<br />'; echo 'Temporary filename:: ' . $usrfl['tmp_name'] . '<br />'; echo 'User filename: ' . $usrfl['name'] . '<br />'; echo 'Size: ' . $usrfl['size'] . '<br />'; echo '<br><br>'; echo '<br>products_id | products_model | products_name | products_tax_class_id | products_status | products_price'; echo '<br><br>'; // get the entire file into an array $readed = file(OOS_UPDATE_PATH . $usrfl['name']); foreach ($readed as $arr) { walk($arr); $Counter++; } echo '<br><br>';
$update_sql_data = array('last_modified' => '" . date("Y-m-d H:i:s", time()) . "'); $sql_data_array = array_merge($sql_data_array, $update_sql_data); oos_db_perform($oostable['manufacturers'], $sql_data_array, 'update', "manufacturers_id = '" . oos_db_input($manufacturers_id) . "'"); } $manufacturers_image = oos_get_uploaded_file('manufacturers_image'); $image_directory = oos_get_local_path(OOS_ABSOLUTE_PATH . OOS_IMAGES); if (is_uploaded_file($manufacturers_image['tmp_name'])) { if (!is_writeable($image_directory)) { if (is_dir($image_directory)) { $messageStack->add_session(sprintf(ERROR_DIRECTORY_NOT_WRITEABLE, $image_directory), 'error'); } else { $messageStack->add_session(sprintf(ERROR_DIRECTORY_DOES_NOT_EXIST, $image_directory), 'error'); } } else { $dbconn->Execute("UPDATE " . $oostable['manufacturers'] . " SET manufacturers_image = '" . $manufacturers_image['name'] . "' WHERE manufacturers_id = '" . oos_db_input($manufacturers_id) . "'"); oos_get_copy_uploaded_file($manufacturers_image, $image_directory); } } $languages = oos_get_languages(); for ($i = 0, $n = count($languages); $i < $n; $i++) { $manufacturers_url_array = oos_db_prepare_input($_POST['manufacturers_url']); $lang_id = $languages[$i]['id']; $sql_data_array = array('manufacturers_url' => oos_db_prepare_input($manufacturers_url_array[$lang_id])); if ($action == 'insert') { $insert_sql_data = array('manufacturers_id' => $manufacturers_id, 'manufacturers_languages_id' => $lang_id); $sql_data_array = array_merge($sql_data_array, $insert_sql_data); oos_db_perform($oostable['manufacturers_info'], $sql_data_array); } elseif ($action == 'save') { oos_db_perform($oostable['manufacturers_info'], $sql_data_array, 'update', "manufacturers_id = '" . oos_db_input($manufacturers_id) . "' and manufacturers_languages_id = '" . intval($lang_id) . "'"); } }
$update_sql_data = array('last_modified' => '" . date("Y-m-d H:i:s", time()) . "'); $sql_data_array = array_merge($update_sql_data, $sql_data_array_sort); oos_db_perform($oostable['information'], $sql_data_array, 'update', "information_id = '" . oos_db_input($information_id) . "'"); } $information_image = oos_get_uploaded_file('information_image'); $image_directory = oos_get_local_path(OOS_ABSOLUTE_PATH . OOS_IMAGES); if (is_uploaded_file($information_image['tmp_name'])) { if (!is_writeable($image_directory)) { if (is_dir($image_directory)) { $messageStack->add_session(sprintf(ERROR_DIRECTORY_NOT_WRITEABLE, $image_directory), 'error'); } else { $messageStack->add_session(sprintf(ERROR_DIRECTORY_DOES_NOT_EXIST, $image_directory), 'error'); } } else { $dbconn->Execute("UPDATE " . $oostable['information'] . " SET information_image = '" . $information_image['name'] . "' WHERE information_id = '" . oos_db_input($information_id) . "'"); oos_get_copy_uploaded_file($information_image, $image_directory); } } $languages = oos_get_languages(); for ($i = 0, $n = count($languages); $i < $n; $i++) { $information_name_array = $_POST['information_name']; $information_url_array = $_POST['information_url']; $information_heading_title_array = $_POST['information_heading_title']; $information_description_array = $_POST['information_description']; $lang_id = $languages[$i]['id']; $sql_data_array = array('information_name' => oos_db_prepare_input($information_name_array[$lang_id])); $sql_data_array_url = array('information_url' => oos_db_prepare_input($information_url_array[$lang_id])); $sql_data_array_head = array('information_heading_title' => oos_db_prepare_input($information_heading_title_array[$lang_id])); $sql_data_array_desc = array('information_description' => oos_db_prepare_input($information_description_array[$lang_id])); $sql_data_array = array_merge($sql_data_array, $sql_data_array_url, $sql_data_array_desc, $sql_data_array_head); if ($action == 'insert') {
oos_db_perform($oostable['customers_status'], $sql_data_array, 'update', "customers_status_id = '" . oos_db_input($customers_status_id) . "' and customers_status_languages_id = '" . intval($lang_id) . "'"); } } // Changes by Guido Start $customers_status_image = oos_get_uploaded_file('customers_status_image'); $image_directory = oos_get_local_path(OOS_ABSOLUTE_PATH . OOS_IMAGES . 'icons/'); if (is_uploaded_file($customers_status_image['tmp_name'])) { if (!is_writeable($image_directory)) { if (is_dir($image_directory)) { $messageStack->add_session(sprintf(ERROR_DIRECTORY_NOT_WRITEABLE, $image_directory), 'error'); } else { $messageStack->add_session(sprintf(ERROR_DIRECTORY_DOES_NOT_EXIST, $image_directory), 'error'); } } else { $dbconn->Execute("UPDATE " . $oostable['customers_status'] . " SET customers_status_image = '" . $customers_status_image['name'] . "' WHERE customers_status_id = '" . oos_db_input($customers_status_id) . "'"); oos_get_copy_uploaded_file($customers_status_image, $image_directory); } } // Changes by Guido END if (isset($_POST['default']) && $_POST['default'] == 'on') { $dbconn->Execute("UPDATE " . $oostable['configuration'] . " SET configuration_value = '" . oos_db_input($customers_status_id) . "' WHERE configuration_key = 'DEFAULT_CUSTOMERS_STATUS_ID'"); } oos_redirect_admin(oos_href_link_admin($aFilename['customers_status'], 'page=' . $_GET['page'] . '&cID=' . $customers_status_id)); break; case 'deleteconfirm': $cID = oos_db_prepare_input($_GET['cID']); $customers_status_result = $dbconn->Execute("SELECT configuration_value FROM " . $oostable['configuration'] . " WHERE configuration_key = 'DEFAULT_CUSTOMERS_STATUS_ID'"); $customers_status = $customers_status_result->fields; if ($customers_status['configuration_value'] == $cID) { $dbconn->Execute("UPDATE " . $oostable['configuration'] . " SET configuration_value = '' WHERE configuration_key = 'DEFAULT_CUSTOMERS_STATUS_ID'"); }
<?php } elseif ($action == 'new_category_preview') { if (oos_is_not_null($_POST)) { $cInfo = new objectInfo($_POST); $categories_name = $_POST['categories_name']; $categories_heading_title = $_POST['categories_heading_title']; $categories_description = $_POST['categories_description']; $categories_description_meta = $_POST['categories_description_meta']; $categories_keywords_meta = $_POST['categories_keywords_meta']; if ($_POST['categories_image'] != 'none' && isset($_FILES['categories_image'])) { $categories_image = oos_get_uploaded_file('categories_image'); $image_directory = oos_get_local_path(OOS_ABSOLUTE_PATH . OOS_IMAGES); } // copy image only if modified if (is_uploaded_file($categories_image['tmp_name'])) { oos_get_copy_uploaded_file($categories_image, $image_directory); $categories_image_name = $categories_image['name']; } else { $categories_image_name = $_POST['categories_previous_image']; } } else { $categoriestable = $oostable['categories']; $categories_descriptiontable = $oostable['categories_description']; $query = "SELECT c.categories_id, cd.categories_languages_id, cd.categories_name,\r\n cd.categories_heading_title, cd.categories_description,\r\n cd.categories_description_meta, cd.categories_keywords_meta,\r\n c.categories_image, c.access, c.sort_order, c.date_added, c.last_modified\r\n FROM {$categoriestable} c,\r\n {$categories_descriptiontable} cd\r\n WHERE c.categories_id = cd.categories_id AND\r\n c.categories_id = '" . intval($_GET['cID']) . "'"; $category_result = $dbconn->Execute($query); $category = $category_result->fields; $cInfo = new objectInfo($category); $categories_image_name = $cInfo->categories_image; } $form_action = $_GET['cID'] ? 'update_category' : 'insert_category'; echo oos_draw_form($form_action, $aFilename['categories'], 'categories=' . $categories . '&cID=' . $_GET['cID'] . '&action=' . $form_action, 'post', 'enctype="multipart/form-data"');
oos_redirect_admin(oos_href_link_admin($aFilename['file_manager'], 'info=' . urlencode($_POST['filename']))); } break; case 'processuploads': $_current_path = oos_get_local_path($_SESSION['current_path']); if (!is_writeable($_current_path)) { if (is_dir($_current_path)) { $messageStack->add_session(sprintf(ERROR_DIRECTORY_NOT_WRITEABLE, $_current_path), 'error'); } else { $messageStack->add_session(sprintf(ERROR_DIRECTORY_DOES_NOT_EXIST, $_current_path), 'error'); } } else { for ($i = 1; $i < 6; $i++) { $file = oos_get_uploaded_file('file_' . $i); if (is_uploaded_file($file['tmp_name'])) { oos_get_copy_uploaded_file($file, $_current_path); } } } oos_redirect_admin(oos_href_link_admin($aFilename['file_manager'])); break; case 'download': header('Content-type: application/x-octet-stream'); header('Content-disposition: attachment; filename=' . urldecode($_GET['filename'])); readfile($_SESSION['current_path'] . '/' . urldecode($_GET['filename'])); exit; break; case 'upload': case 'new_folder': case 'new_file': $directory_writeable = true;
$sql_data_array = array_merge($sql_data_array, $update_sql_data); oos_db_perform($oostable['newsfeed'], $sql_data_array, 'update', "newsfeed_id = '" . oos_db_input($newsfeed_id) . "'"); } $newsfeed_image = oos_get_uploaded_file('newsfeed_image'); $image_directory = oos_get_local_path(OOS_ABSOLUTE_PATH . OOS_IMAGES); if (is_uploaded_file($newsfeed_image['tmp_name'])) { if (!is_writeable($image_directory)) { if (is_dir($image_directory)) { $messageStack->add_session(sprintf(ERROR_DIRECTORY_NOT_WRITEABLE, $image_directory), 'error'); } else { $messageStack->add_session(sprintf(ERROR_DIRECTORY_DOES_NOT_EXIST, $image_directory), 'error'); } } else { $newsfeedtable = $oostable['newsfeed']; $dbconn->Execute("UPDATE {$newsfeedtable} SET newsfeed_image = '" . $newsfeed_image['name'] . "' WHERE newsfeed_id = '" . oos_db_input($newsfeed_id) . "'"); oos_get_copy_uploaded_file($newsfeed_image, $image_directory); } } $languages = oos_get_languages(); for ($i = 0, $n = count($languages); $i < $n; $i++) { $newsfeed_name_array = $_POST['newsfeed_name']; $newsfeed_title_array = $_POST['newsfeed_title']; $newsfeed_description_array = $_POST['newsfeed_description']; $lang_id = $languages[$i]['id']; $sql_data_array = array('newsfeed_name' => oos_db_prepare_input($newsfeed_name_array[$lang_id]), 'newsfeed_title' => oos_db_prepare_input($newsfeed_title_array[$lang_id]), 'newsfeed_description' => oos_db_prepare_input($newsfeed_description_array[$lang_id])); if ($action == 'insert') { $insert_sql_data = array('newsfeed_id' => $newsfeed_id, 'newsfeed_languages_id' => $lang_id); $sql_data_array = array_merge($sql_data_array, $insert_sql_data); oos_db_perform($oostable['newsfeed_info'], $sql_data_array); } elseif ($action == 'save') { oos_db_perform($oostable['newsfeed_info'], $sql_data_array, 'update', "newsfeed_id = '" . oos_db_input($newsfeed_id) . "' and newsfeed_languages_id = '" . intval($lang_id) . "'");
if (isset($banners_image) && $banners_image['name'] != 'none' && is_uploaded_file($banners_image['tmp_name'])) { $store_image = false; if (!is_writeable($image_directory)) { if (is_dir($image_directory)) { $messageStack->add(sprintf(ERROR_IMAGE_DIRECTORY_NOT_WRITEABLE, $image_directory), 'error'); } else { $messageStack->add(sprintf(ERROR_IMAGE_DIRECTORY_DOES_NOT_EXIST, $image_directory), 'error'); } $banner_error = true; } else { $store_image = true; } } if (!$banner_error) { if (empty($html_text) && $store_image == true) { oos_get_copy_uploaded_file($banners_image, $image_directory); } $db_image_location = oos_is_not_null($banners_image_local) ? $banners_image_local : $banners_image_target . $banners_image['name']; $sql_data_array = array('banners_title' => $banners_title, 'banners_url' => $banners_url, 'banners_image' => $db_image_location, 'banners_group' => $banners_group, 'banners_html_text' => $html_text); if ($action == 'insert') { $insert_sql_data = array('date_added' => '" . date("Y-m-d H:i:s", time()) . "', 'status' => '1'); $sql_data_array = array_merge($sql_data_array, $insert_sql_data); oos_db_perform($oostable['banners'], $sql_data_array); $banners_id = $dbconn->Insert_ID(); $messageStack->add_session(SUCCESS_BANNER_INSERTED, 'success'); } elseif ($action == 'update') { oos_db_perform($oostable['banners'], $sql_data_array, 'update', 'banners_id = \'' . $banners_id . '\''); $messageStack->add_session(SUCCESS_BANNER_UPDATED, 'success'); } if (isset($_POST['expires_date'])) { $expires_date = oos_db_prepare_input($_POST['expires_date']);
$cleanheader = str_replace('"', '', $header); // echo "Fileheader was $header<br /><br /><br />"; $filelayout[$cleanheader] = $lll++; // } unset($readed[0]); // we don't want to process the headers with the data // now we've got the array broken into parts by the expicit end-of-row marker. array_walk($readed, 'walk'); } if (is_uploaded_file($usrfl) && $split == 1) { // move the file to where we can work with it $file = oos_get_uploaded_file('usrfl'); //echo "Trying to move file..."; if (is_uploaded_file($file['tmp_name'])) { oos_get_copy_uploaded_file($file, OOS_ABSOLUTE_PATH . $tempdir); } $infp = fopen(OOS_ABSOLUTE_PATH . $tempdir . $usrfl['name'], "r"); //toprow has the field headers $toprow = fgets($infp, 32768); $filecount = 1; echo CREATING_FILE . "EP_Split" . $filecount . ".txt ... "; $tmpfname = OOS_ABSOLUTE_PATH . $tempdir . "EP_Split" . $filecount . ".txt"; $fp = fopen($tmpfname, "w+"); fwrite($fp, $toprow); $linecount = 0; $line = fgets($infp, 32768); while ($line) { // walking the entire file one row at a time // but a line is not necessarily a complete row, we need to split on rows that have "EOREOR" at the end $line = str_replace('"EOREOR"', 'EOREOR', $line);