function print_files_page() { $this->caption = $GLOBALS["Lang"]["Files"]; if (!empty($_FILES)) { for ($i = 1; $i < 2; $i++) { if (!empty($_FILES["photo_" . $i])) { $_FILES["photo_" . $i]["name"]; $arr = explode(".", $_FILES["photo_" . $i]["name"]); if ($arr[count($arr) - 1] == "exe" || $arr[count($arr) - 1] == "bat" || $arr[count($arr) - 1] == "php" || $arr[count($arr) - 1] == "cgi" || $arr[count($arr) - 1] == "js") { die("Unable to upload *.exe, *.bat, *.php, *.cgi, *.js files"); } $f1 = engine::upload_file("photo_" . $i, 'files/'); $_FILES["photo_" . $i] = ""; } } } if (!empty($_GET["name"])) { $name = trim(htmlspecialchars($_GET["name"])); $images = "files/" . $name; if (is_file($images)) { @unlink($images); } } $fout = '<center> <table class="table" style="border: 0px;"> <tr><td align=left> '; $i = 0; $dirct = "files/"; $hdl = opendir($dirct) or die("can't open direct"); while ($file_name = readdir($hdl)) { if ($file_name != "." && $file_name != ".." && is_file($dirct . $file_name)) { $fout .= '<a href="/files/' . $file_name . '" target="_blank">' . $file_name . '</a> <a href="/admin/mode=files&name=' . $file_name . '"><img style="cursor:pointer;margin-left: 3px;" width=14 src="/img/cms/close_button.png" title="' . $GLOBALS["Lang"]["Delete"] . '" /></a><br/><br/>'; } } $fout .= ' <br/> </td> </tr> </table> <input id="button" type="button" name="load" value="' . $GLOBALS["Lang"]["Upload files"] . '" class="btn" style="width: 280px;" onClick=\'this.style.display="none";document.getElementById("form").style.display="block";\' /> <form method="POST" ENCTYPE="multipart/form-data" id="form" style="display:none;"> <input id="file" type="file" onChange=\'document.getElementById("form").submit();\' required placeHolder="' . $GLOBALS["Lang"]["File"] . '" title="' . $GLOBALS["Lang"]["File"] . '" name="photo_1" style="width: 280px; cursor: pointer;" class="input" /><br/><br/> </form> </center>'; return $fout; }