<?php !function_exists('readover') && exit('Forbidden'); if (empty($_GET['step'])) { list($db_upload, $db_imglen, $db_imgwidth, $db_imgsize) = explode("\t", $db_upload); S::gp(array('uid', 'verify')); $swfhash = GetVerify($uid); checkVerify('swfhash'); $db_uploadfiletype = array(); $db_uploadfiletype['gif'] = $db_uploadfiletype['jpg'] = $db_uploadfiletype['bmp'] = $db_uploadfiletype['png'] = $db_imgsize; L::loadClass('upload', '', false); $pwupload = new PwUpload(new FaceUpload()); $pwupload->upload($uid); $uploaddb = $pwupload->getAttachs(); echo $db_bbsurl . '/' . $attachpath . '/' . $uploaddb['fileuploadurl'] . '?' . $timestamp; exit; } else { require_once R_P . 'require/functions.php'; L::loadClass('upload', '', false); $ext = strtolower(substr(strrchr($_GET['filename'], '.'), 1)); $udir = str_pad(substr($winduid, -2), 2, '0', STR_PAD_LEFT); $source = PwUpload::savePath($db_ifftp, "{$winduid}_tmp.{$ext}", "upload/{$udir}/"); if (!file_exists($source)) { Showmsg('undefined_action'); } $data = $_SERVER['HTTP_RAW_POST_DATA'] ? $_SERVER['HTTP_RAW_POST_DATA'] : file_get_contents('php://input'); if ($data) { require_once R_P . 'require/showimg.php'; $filename = "{$winduid}.jpg"; $normalDir = "upload/{$udir}/"; $middleDir = "upload/middle/{$udir}/";