function uploadContentFile() { $StatusMessage = ""; $ActualFileName = ""; $FileObject = $_FILES["upload_file"]; // find data on the file $DestPath = sys_get_temp_dir(); $aux = ''; $cadena = str_replace("\r\n", "", file_get_contents(htmlentities($FileObject['tmp_name']))); updateEditorContent(trim($cadena)); closeWindow(); }
function uploadContentFile() { G::LoadSystem('inputfilter'); $filter = new InputFilter(); $_FILES["upload_file"] = $filter->xssFilterHard($_FILES["upload_file"]); $StatusMessage = ""; $ActualFileName = ""; $DestPath = sys_get_temp_dir(); $aux = ''; $chain = preg_replace("/\r\n+|\r+|\n+|\t+/i", " ", file_get_contents($_FILES["upload_file"]["tmp_name"])); $chain = preg_replace('#<head(.*?)>(.*?)</head>#is', ' ', $chain); $chain = strip_tags($chain, '<address><label><canvas><option><ol><u><textarea><em><h1><h2><h3><h4><h5><h6><section><tbody><tr><th><td><hr><center><br><b><img><p><a><table><caption><thead><div><ul><li><form><input><strong><span><small><button><figure>'); $chain = str_replace('"', "'", $chain); updateEditorContent(trim($chain)); closeWindow(); }
function uploadVariablePicker() { $StatusMessage = ""; $ActualFileName = ""; $FileObject = $_REQUEST["upload_variable"]; // find data on the file updateEditorContent(trim($FileObject)); closeWindow(); }