<td> <form action="dirLIST_files/process_upload.php" method="post" enctype="multipart/form-data" name="upload_form" id="upload_form"> <input name="file" type="file" id="file" size="40" /> <input name="submit" type="submit" id="submit" value="<?php echo $local_text['upload']; ?> " /> <input name="folder" type="hidden" id="folder" value="<?php echo $_GET['folder']; ?> " /><?php echo $local_text['filesize_limit']; ?> : <?php echo max_upload_size(); ?> B <?php if ($display_banned_files == 1) { echo '<br /><span class="banned_font">' . $local_text['banned_files'] . ': '; foreach ($banned_file_types as $val) { $string .= substr($val, 1) . " | "; } echo substr($string, 0, -3); echo '</span>'; } ?> </form></td></tr> </table>
echo display_error_message("<b>Access Denied</b>"); exit; } //Seurity feature -done //Calculate table dimensions $table_width = 50 + $width_of_files_column + $width_of_sizes_column + $width_of_dates_column; //Any upload error is displayed here switch (base64_decode($_GET['err'])) { case "upload_banned": echo display_error_message("<b><script> alert('Upload failed, banned file type ');</script></b>") . "<br/>"; break; case "upload_error": echo display_error_message("<b><script> alert('Upload failed, an unknown error occured');</script></b>") . "<br />"; break; case "size": echo display_error_message("<b>File size exceeded limit. Max allowed is " . max_upload_size() . "B</b>") . "<br />"; break; case "nofile": echo display_error_message("<b>Please select a file to upload!</b>") . "<br />"; break; } //Any upload error is displayed here -done //Change excluded extensions to lowercase if $case_sensative_ext is disabled if ($case_sensative_ext == 0) { foreach ($exclude_ext as $key => $val) { $exclude_ext[$key] = strtolower($val); } } //Initialize arrays $folders = array(); $files = array();
/** @test */ function it_registers_max_upload_size_helper() { $this->assertEquals(app()->make('transit.upload')->maxUploadSize(), max_upload_size()); }
// ========================== 文件说明 ==========================// // 本文件说明:文章管理 // --------------------------------------------------------------// // 本程序作者:angel // --------------------------------------------------------------// // 本程序版本:SaBlog-X Ver 2.0 // --------------------------------------------------------------// // 本程序主页:http://www.sablog.net // ==============================================================// if (!defined('SABLOG_ROOT') || !isset($php_self) || !preg_match("/[\\/\\\\]cp\\.php\$/", $php_self)) { exit('Access Denied'); } permission(array(1, 2)); // 加载附件相关函数 require_once SABLOG_ROOT . 'include/func/attachment.func.php'; $max_upload_size = max_upload_size(); $max_upload_size_unit = sizecount($max_upload_size); $article = array(); if ($articleid) { $article = $DB->fetch_one_array("SELECT a.*,u.username FROM {$db_prefix}articles a\r\n\t\tLEFT JOIN {$db_prefix}users u ON u.userid=a.uid\r\n\t\tWHERE articleid='{$articleid}'"); if (!$article) { redirect('日志不存在'); } } if ($message) { $messages = array(1 => '标题不能为空并且不能超过120个字符<br />', 2 => '你还没有选择分类<br />', 3 => '内容不能为空并且不能少于4个字符<br />', 4 => '关键词不能超过10个<br />', 5 => '每个关键字不能超过30个字符<br />', 6 => '自定义URL只允许大小写字母、数字、下划线和减号<br />', 7 => '自定义URL名称已经存在<br />', 8 => '数据库中已存在一样的标题了,建议您换一个.<br />', 9 => '添加日志成功', 10 => sprintf('添加日志成功, <a href="' . $options['url'] . 'index.php?action=show&id=%d" target="_blank">查看刚才发布的文章</a>', $articleid), 11 => '您不能修改或删除不是您写的日志', 12 => '修改日志成功', 13 => sprintf('修改日志成功, <a href="' . $options['url'] . 'index.php?action=show&id=%d" target="_blank">查看刚才修改的文章</a>', $articleid), 14 => '日志不存在', 15 => '删除日志成功', 16 => '已经把《' . $article['title'] . '》设置为隐藏状态', 17 => '已经把《' . $article['title'] . '》设置为显示状态', 18 => '所选项目已隐藏', 19 => '所选项目已显示', 20 => '所选项目已置顶', 21 => '所选项目已取消置顶', 22 => '没有选择具体操作', 23 => '未选择任何项目'); } $uquery = ''; if ($sax_group != 1) { $uquery = " AND uid='{$sax_uid}'"; }
<div id="fg_Upload_Close"><a href="javascript:fg_hideform('fg_formUpload','fg_backgroundUpload');">Close(X)</a></div> </div> <div id="fg_form_InnerUpload"> <?php //File uploading if($file_uploads == 1 && $listing_mode == 0) { ?> <table width="<?PHP echo $table_width; ?>" border="0" cellpadding="2" cellspacing="2" class="table_border"> <tr class="top_row"> <td> <form action="dirLIST_files/process_upload.php" method="post" enctype="multipart/form-data" name="upload_form" id="upload_form" maxlength="4"> <input name="file" type="file" id="file" size="40" /> <input name="submit" type="submit" id="submit" value="<?PHP echo $local_text['upload']; ?>" /> <input name="folder" type="hidden" id="folder" value="<?PHP echo $_GET['folder']; ?>" /><?PHP echo $local_text['filesize_limit']; ?>: <?PHP echo max_upload_size(); ?> </form> </td> </tr> </table> <?PHP //File uploading -done } ?> </div> </div> <!-- client-side Form Validations: Uses the excellent form validation script from JavaScript-coder.com--> <script type='text/javascript'> // <![CDATA[
protected function _event_home() { global $warning; $v = $this->__(array('e_title', 'e_text', 'e_time' => array(0), 'e_artists' => array(0))); $v_check = array('e_title' => 'INVALID_NAME', 'e_cat' => 'INVALID_CATEGORY'); foreach ($v_check as $vk => $vv) { if (empty($v->{$vk})) { $warning->set($vv); } } if (!$warning->exist) { $v['e_alias'] = _alias($v['e_title']); if (empty($v['e_alias'])) { $arning->set('INVALID_ALIAS'); } } if (!$warning->exist) { $sql = 'SELECT cat_id FROM _events_category WHERE cat_id = ?'; if (!sql_fieldrow(sql_filter($sql, $v->e_cat))) { $this->warning->set('invalid_category'); } } if (!$this->warning->exist) { $core->require('upload'); $core->upload->init(); $f = $core->upload->process(LIB . 'tmp/', $_FILES['e_flyer'], w('jpg'), max_upload_size()); if ($f === false && count($core->upload->warning)) { $this->warning->set($core->upload->warning); } } if (!$this->warning->exist()) { $sql_insert = array('alias' => $v['e_alias'], 'subject' => str_normalize($v['e_title']), 'text' => str_normalize($v['e_text']), 'approved' => 0, 'views' => 0, 'posts' => 0, 'start' => $e_start, 'end' => $e_end, 'images' => 0); sql_put('_events', prefix('event', $sql_insert)); $v['e_id'] = sql_nextid(); if (is_array($v->e_artists)) { foreach ($v['e_artists'] as $row) { $sql_insert = array('id' => (int) $v['e_id'], 'artist' => (int) $row); sql_put('_events_artists', prefix('event', $sql_insert)); } } foreach ($f as $row) { $f2 = $upload->resize($row, LIB . 'tmp', LIB . 'events/future/', $v['e_id'], array(600, 400), false, false, true); if ($f2 === false) { continue; } $f3 = $upload->resize($row, LIB . 'events/future/', LIB . 'events/preview/', $v['e_id'], array(210, 210), false, false); } redirect(_link('events', $v['e_alias'])); } return; }