// Keep our form data clean $_POST["email-login"] = stripslashes(trim($_POST["email-login"])); $_POST["password-login"] = stripslashes(trim($_POST["password-login"])); // test if the password is correct if (check_login($_POST["email-login"], $_POST["password-login"])) { $_SESSION['qcs-isconnect'] = true; // HISTORY ////////////////////////////////////////////////////////////////////////// require_once("qcs-admin/include/member.inc.php"); require_once("qcs-admin/include/history.inc.php"); $idMember = getIdMemberByEmail($_POST["email-login"]); addHistory($idMember , "connection"); ////////////////////////////////////////////////////////////////////////// // COOKIE $_SESSION['email-login'] = $_POST["email-login"]; setcookie('loginQCS' , $_POST["email-login"] , mktime(0,0,0,12,31,2037) , '/'); $qcsType = getMemberTypeById($idMember); setcookie('qcs-type' , $qcsType , mktime(0,0,0,12,31,2037) , '/'); header('Location:http://'.$_SERVER['HTTP_HOST'].'/member-area-index/'); exit();
<?php require_once "../include/member.inc.php"; require_once "../include/history.inc.php"; $link = $_REQUEST['link']; session_start(); // echo "email login = "******"idMember = " . $idMember; addHistory($idMember, "download", $link); $link = utf8_decode($link); $filename = getNameFromFile($link); header("content-type: application/octet-stream"); header('Content-Disposition: attachment; filename="' . $filename . '"'); header("Content-Length: " . filesize($link)); header("Pragma: no-cache"); header("Cache-Control: must-revalidate, post-check=0, pre-check=0, public"); header("Expires: 0"); readfile($link); function getNameFromFile($file) { $tab = explode("/", $file); $name = str_replace("%20", " ", $tab[count($tab) - 1]); $name = str_replace("?m=", " ", $name); return $name; }