|
Server IP : 2a02:4780:3:1378:0:3736:a38e:10 / Your IP : 3.21.106.4 Web Server : LiteSpeed System : Linux sg-nme-web1278.main-hosting.eu 4.18.0-513.11.1.lve.el8.x86_64 #1 SMP Thu Jan 18 16:21:02 UTC 2024 x86_64 User : u926327694 ( 926327694) PHP Version : 7.4.33 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : ON | Perl : OFF | Python : OFF Directory (0755) : /home/u926327694/domains/stjpuvjp.com/../smsoft.in/../stjpuvjp.com/public_html/gallery/ |
| [ Home ] | [ C0mmand ] | [ Upload File ] |
|---|
<?php
session_start();
?>
<?php
error_reporting(E_ALL ^ E_WARNING);
// First we execute our common code to connection to the database and start the session
// At the top of the page we check to see whether the user is logged in or not
if(empty($_SESSION['userlogin']))
{
// If they are not, we redirect them to the login page.
header("Location: index.php");
// Remember that this die statement is absolutely critical. Without it,
// people can view your members-only content without logging in.
die("Redirecting to index.php");
}
// Everything below this point in the file is secured by the login system
// We can display the user's username to them by reading it from the session array. Remember that because
// a username is user submitted content we must use htmlentities on it before displaying it to the user.
?>
<?php
include 'functions.php';
// The output message
$msg = '';
// Check if user has uploaded new image
if (isset($_FILES['image'], $_POST['title'], $_POST['description'])) {
// The folder where the images will be stored
$target_dir = 'images/';
// The path of the new uploaded image
$image_path = $target_dir . basename($_FILES['image']['name']);
// Check to make sure the image is valid
if (!empty($_FILES['image']['tmp_name']) && getimagesize($_FILES['image']['tmp_name'])) {
if (file_exists($image_path)) {
$msg = 'Image already exists, please choose another or rename that image.';
} else if ($_FILES['image']['size'] > 500000) {
$msg = 'Image file size too large, please choose an image less than 500kb.';
} else {
// Everything checks out now we can move the uploaded image
move_uploaded_file($_FILES['image']['tmp_name'], $image_path);
// Connect to MySQL
$pdo = pdo_connect_mysql();
if(isset($_POST['news']))
{
$news=1;
}else
{
$news=0;
}
// Insert image info into the database (title, description, image path, and date added)
$stmt = $pdo->prepare('INSERT INTO images_sta VALUES (NULL, ?, ?, ?,?, CURRENT_TIMESTAMP)');
$stmt->execute([$_POST['title'], $_POST['description'], $image_path,$news]);
$msg = 'Image uploaded successfully!';
}
} else {
$msg = 'Please upload an image!';
}
}
?>
<!DOCTYPE html>
<html>
<head>
<meta charset="utf-8">
<title>K.H.Patil College of Commerce</title>
<link href="style1.css" rel="stylesheet" type="text/css">
<link rel="stylesheet" href="https://use.fontawesome.com/releases/v5.7.1/css/all.css">
<link rel="shortcut icon" href="../images/favicon.ico" type="image/x-icon">
<style>
</style>
</head>
<body>
<nav class="navtop">
<div>
<h1>Gallery Upload</h1>
<a href="gallery.php"><i class="fas fa-image"></i>Gallery</a>
</div>
</nav>
<div class="content upload">
<h2>Upload Image</h2>
<form action="upload.php" method="post" enctype="multipart/form-data">
<label for="image">Choose Image</label>
<input type="file" name="image" accept="image/*" id="image">
<label for="title">Title</label>
<input type="text" name="title" id="title"> <font color="red">Is this News? Check it.</font> <input type="checkbox" value="1" name="news" id="news">
<label for="description">Description</label>
<textarea name="description" id="description"></textarea>
<input type="submit" value="Upload Image" name="submit">
</form>
<p><?=$msg?></p>
</div>
</body>
</html>