} if (ACCESS < ACCESS_HOST) { redirect(BASEDIR); } switch ($_GET["action"]) { case "fetchfile": fetchFile($_GET["which"]); break; case "delfile": deleteFile($_GET["which"]); break; case "fetchpack": fetchPack($_GET["which"]); break; case "delpack": deletePack($_GET["which"]); break; } function processUpload() { global $mysqli; $compo = intval($_POST["compo"]); if (isset($_POST["token"]) && $_POST["token"] > 0) { // Remove upload token $stmt = $mysqli->prepare('DELETE FROM `uploading` WHERE `idupload` = ? AND `author` = ? AND `idcompo` = ? ') or die('query failed'); $stmt->bind_param('isi', intval($_POST["token"]), $_POST["author"], $compo); $stmt->execute() or die('query failed');
function deleteCompo($compo, $doRedirect = TRUE) { global $mysqli; $compo = intval($compo); $result = $mysqli->query("SELECT * FROM `compos` WHERE `idcompo` = {$compo}") or die('query failed'); $row = $result->fetch_assoc(); $result->free(); if (!canDeleteCompo($row)) { redirect(BASEDIR); } require_once 'php/file.php'; deletePack($compo, FALSE); $mysqli->query("DELETE FROM `compos` WHERE `idcompo` = {$compo}") or die('query failed'); if ($doRedirect) { redirect(BASEDIR . "admin/compo"); } }