-
Notifications
You must be signed in to change notification settings - Fork 0
/
upload.php
81 lines (76 loc) · 2.26 KB
/
upload.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
<?php
include("../connection.php");
session_start();
if(isset($_POST['submit']))
{
$filename = $_FILES["file"]["name"];
$tempname = $_FILES["file"]["tmp_name"];
$filesize = $_FILES["file"]["size"];
$fileerror = $_FILES["file"]["error"];
$filetype = $_FILES["file"]["type"];
$fileext = explode('.',$filename);
$fileactext = strtolower(end($fileext));
$allowed = array('jpg','jpeg','png');
if(in_array($fileactext,$allowed)){
if($fileerror ===0 ){
if($filesize < 1000000){
$filenamenew = uniqid('',true).".".$fileactext;
$filedestn = "stuadmin/ " .$filenamenew;
$mails= $_SESSION['user_name'];
$q="SELECT picsource FROM ranks WHERE email='$mails'";
$d=mysqli_query($conn,$q);
$t=mysqli_num_rows($d);
if($t==1)
{
while($result=mysqli_fetch_array($d))
{
if($result['picsource']=="stuadmin/default.jpg")
{
move_uploaded_file($tempname,$filedestn);
$query ="UPDATE ranks SET picsource='$filedestn' WHERE email='$mails'";
$data= mysqli_query($conn,$query);
header("Location:settings.php?uploadsuccess");
}
else
{
$u=unlink($result['picsource']);
if($u)
{
move_uploaded_file($tempname,$filedestn);
$query ="UPDATE ranks SET picsource='$filedestn' WHERE email='$mails'";
$data= mysqli_query($conn,$query);
header("Location:settings.php?uploadsuccess");
}
else
{
move_uploaded_file($tempname,$filedestn);
$query ="UPDATE ranks SET picsource='$filedestn' WHERE email='$mails'";
$data= mysqli_query($conn,$query);
header("Location:settings.php?uploadsuccess");
}
}
}
}
else
{
move_uploaded_file($tempname,$filedestn);
$query ="UPDATE ranks SET picsource='$filedestn' WHERE email='$mails'";
$data= mysqli_query($conn,$query);
header("Location:settings.php?uploadsuccess");
}
}
else
{
echo "Your file is too big!";
}
}
else{
echo "There was an error uploading your file!";
}
}
else
{
echo "You cannot upload files of this type!";
}
}
?>