<html>
<style>
A:link {text-decoration: none; font-family:verdana; font-size: 8pt; color: #000000}
A:visited {text-decoration: none; font-family:verdana; font-size: 8pt; color: #000000}
A:active {text-decoration: none; font-family:verdana; font-size: 8pt; color: #9CA6BD}
A:hover {text-decoration: none; color: #6B7A9C}
table {font-family:verdana; font-size: 8pt; color: #000000}
td {font-family:verdana; font-size: 8pt; color: #000000}
body {font-family:verdana; font-size: 8pt; color: #000000}
</style>
<head>
<meta http-equiv="Content-Language" content="da">
<meta http-equiv="Content-Type" content="text/html; charset=windows-1252">
<title>Upload</title>
<base target="_self">
</head>
<body topmargin="0" leftmargin="25" rightmargin="0" bottommargin="00" marginwidth="0" marginheight="0">
<table border="0" cellpadding="0" style="border-collapse: collapse" id="table1" align="left" width="600">
<tr>
<td valign="top">
<p align="center" style="margin-left: 20px"> </p>
<div align="center">
<table cellspacing='0' cellpadding='2' width='490' style='background-color:#EEEEEE;border:1px solid #999999' id="table6" height="80"><tr>
<td align='center' style='border-top:1px solid #999999'>
<script language="javascript">
var uri = '
http://impdk.tradedoubler.com/imp/pool/js/56035/1048387?' + new String (Math.random()).substring (2, 11);
document.write('<sc'+'ript language="JavaScript" src="'+uri+'" charset="ISO-8859-1"></sc'+'ript>');
</script></td></tr></table>
</div>
<p align="center" style="margin-left: 20px">
<br>
</p><font face="Verdana" size="1" style="font-size: 6pt">
<div align="center">
<table border="0" width="700" id="table5" cellspacing="0" cellpadding="0" style="font-family: verdana; font-size: 8pt; color: #000000">
<tr>
<p align="center"><p align="center">
<?
//-- USER VARIABLE
$user_password = "test";
$admin_password = "adminpass";
//-- That's it! You don't need to touch below.
$site_name = $_SERVER['HTTP_HOST'];
$message = "";
//$message = "cookie_password = ".$_COOKIE['upload_password']. "<br>";
if (!$form_password)
$form_password = $_COOKIE['upload_password'] ;
$upload_dir = "files/";
$url_dir = "
http://".$_SERVER['HTTP_HOST'].dirname($_SERVER['PHP_SELF']);
$url_this = "
http://".$_SERVER['HTTP_HOST'].$_SERVER['PHP_SELF'];$upload_url = $url_dir."files/";
//$message .= "form_password = $form_password <br>";
//$message .= "upload_files = ".$_COOKIE['upload_files'] ."<br>";
if ( $form_password==$user_password || $form_password==$admin_password)
if ($upload) {
$message .= do_upload($upload_dir, $upload_url);
}
if ($delete) {
if (unlink($upload_dir."/".$delete)) {
$message .= "Filen $delete er blevet slettet!";
$pos = strpos($_COOKIE['upload_files'], $delete );
//$message .= "delete=$delete<br>";
//$message .= "pos=$pos<br>";
//$message .= "1st=".substr($_COOKIE['upload_files'],0,$pos)."<br>";
//$message .= "2nd=".substr($_COOKIE['upload_files'],$pos+strlen($delete)+1)."<br>";
$new_cookie = substr($_COOKIE['upload_files'],0,$pos)."".
substr($_COOKIE['upload_files'],$pos+strlen($delete)+1);
setcookie('upload_files', $new_cookie);
}
}
else {
$message .= "";
}
function do_upload($upload_dir, $upload_url) {
if (is_uploaded_file($_FILES['userfile']['tmp_name'])) {
$temp_name = $_FILES['userfile']['tmp_name'];
$file_type = $_FILES['userfile']['type'];
$file_name = forceFilename($_FILES['userfile']['name'], $_FILES['userfile']['type']);
$file_size = $_FILES['userfile']['size'];
$result = $_FILES['userfile']['error'];
$max_size = 1000000;
$max_size_gfx = 1000000;
$file_url = $upload_url.$file_name;
$file_path = $upload_dir.$file_name;
if ( $file_size > $max_size)
{
$message .= "Filen fylder mere end $max_size.";
return $message;
}
switch ($file_type)
{
case "image/pjpeg": case "image/gif": case "image/x-png": case "image/bmp":
if ( $file_size > $max_size_gfx)
{
$message .= "Filen fylder mere end ".round($max_size_gfx/1024, 0)." KB.";
return $message;
}
break;
case "video/x-ms-wmv": case "audio/x-ms-wma": case "video/avi": case "audio/basic": case "audio/wav": case "audio/mpeg": case "video/mpeg":
if ( $file_size > $max_size)
{
$message .= "Filen fylder mere end ".round($max_size/1024, 0)." KB.";
return $message;
}
break;
case "application/x-zip-compressed":
if ( $file_size > $max_size_gfx)
{
$message .= "Filen fylder mere end ".round($max_size/1024, 0)." KB.";
return $message;
}
break;
default :
return "Filtypen: $file_type er ikke tilladt." ; break;
}
$new_file_name=$file_name;
$ver=1;
while ( file_exists($file_path) ) {
$ver++;
$new_file_name = $file_name."[".$ver."]";
$file_path = $upload_dir.$new_file_name;
$file_url = $upload_url.$new_file_name;
}
if ( move_uploaded_file($temp_name, $file_path) ) {
$message .= "
<br>
<br>
Fil Navn : $file_name <br>
Fil Type : $file_type <br>
Fil Størrelse : $file_size byte<br>
Placering :
http://www.upitfree.dk/upload/$file_path<br>
<b><$file_url></b>
"
;
}
}
else {
if ( $file_name == "") {
if ( $message == "" )
{
$message .= "Ugyldig fil-navn, type: ".$file_type;
return $message;
}
else
return $message;
}
else
$message .= " Possible file upload attack: filename".$real_name;
}
return $message;
}
function display_files($upload_dir,$form_password, $admin_password)
{
$url_dir = "
http://".$_SERVER['HTTP_HOST'].dirname($_SERVER['PHP_SELF']);
$upload_url = $url_dir."/".$upload_dir;
// if ($handle = opendir($upload_dir));
// else
// return "ERROR: Cannot Open Directory $upload_dir";
$html = "";
$file_type = "";
$file_time = "";
$file_size = "";
// $files_arr = explode( ":", $_COOKIE['upload_files'] );
// closedir($handle);
$FileList = getDirArray($upload_dir);
if ($FileList)
{
while (list($key,$file) = each($FileList))
{
$file_str = explode("|", $file);
$file_time = date("Y M d", filemtime("files/".$file_str[1]));
$file_size = round(filesize("files/".$file_str[1])/1024, 2);
$html .= "<tr><td align=left><a href='$upload_url$file_str[1]' target='about_blank'>$file_str[1]</a></td><td align=left>$file_time</td><td align=right>$file_size</td></tr>";
//$html .= "$file, $files_arr, $form_password, $admin_password <br>";
//if ( in_array( $file , $FileList ) || $form_password == $admin_password )
// $html .= "<tr><td><a href='$delete_url'>Delete</a></td></tr>";
//else
// $html .= "<tr><td> </td></tr>";
}
}
return $html;
}
function getDirArray($Path="./",$Filter=".*",$Sorted="True")
{
$handle=opendir($Path);
while ($file = readdir($handle)) {
if (is_file("$Path/$file") && eregi("$Filter", $file)) {
$file_time = date("Y M d", filemtime("files/".$file));
$file_size = filesize("files/".$file);
switch ($_GET[field])
{
case "name":
$dirArray[] = $file."|".$file;
break;
case "date":
$dirArray[] = $file_time."|".$file;
break;
case "size":
$dirArray[] = $file_size."|".$file;
break;
default :
$dirArray[] = $file."|".$file;
break;
}
}
}
closedir($handle);
if (!is_array($dirArray)) {
return 0;
}
if (strcasecmp($Sorted,"True")) {
return shuffle($dirArray); // May not work on some systems. See docs
} else {
$sort_direction = strtolower($_GET[order]);
return iSort($dirArray, $sort_direction);
}
}
function iSort($sortarr, $sortdirection) {
$bakarr = $sortarr;
for($arrnum = 0; $arrnum < Count($sortarr); $arrnum++) {
$sortarr[$arrnum] = strtolower($sortarr[$arrnum])."|".$arrnum;
}
if ($_GET[field] == "size")
{
sort($sortarr, SORT_NUMERIC);
}
else
{
sort($sortarr);
}
reset($sortarr);
if ($sortdirection == "desc")
{
for($arrnum = Count($sortarr)-1; $arrnum >= 0; $arrnum--)
{
$temp = explode("|", $sortarr[$arrnum]);
$newarr[] = $bakarr[$temp[Count($temp)-1]];
}
}
else
{
for($arrnum = 0; $arrnum < Count($sortarr); $arrnum++)
{
$temp = explode("|", $sortarr[$arrnum]);
$newarr[] = $bakarr[$temp[Count($temp)-1]];
}
}
return $newarr;
}
function forceFilename($str, $str_type, $spaceChar = '_')
{
$str=trim($str);
$_str = '';
$i_max = strlen($str);
for ($i=0; $i<strlen($str); $i++)
{
$ch = $str[$i];
switch ($ch)
{
case 'Ä': case 'Æ':
$_str .= 'AE'; break;
case 'ä': case 'æ':
$_str .= 'ae'; break;
case 'à': case 'á': case 'â': case 'ã':
$_str .= 'a'; break;
case 'À': case 'Á': case 'Â': case 'Ã':
$_str .= 'a'; break;
case 'å':
$_str .= 'aa'; break;
case 'Å':
$_str .= 'aa'; break;
case 'Ç': case 'ç':
$_str .= 'c'; break;
case 'è': case 'é': case 'ê': case 'ë':
$_str .= 'e'; break;
case 'È': case 'É': case 'Ê': case 'Ë':
$_str .= 'E'; break;
case 'Ì': case 'Í': case 'Î': case 'Ï':
$_str .= 'I'; break;
case 'ì': case 'í': case 'î': case 'ï':
$_str .= 'i'; break;
case 'Ñ': case 'ñ':
$_str .= 'n'; break;
case 'Ö':
$_str .= 'OE'; break;
case 'ö':
$_str .= 'oe'; break;
case 'ø':
$_str .= 'o'; break;
case 'Ø':
$_str .= 'O'; break;
case 'Ò': case 'Ó': case 'Ô': case 'Õ':
$_str .= 'O'; break;
case 'ò': case 'ó': case 'ô': case 'õ':
$_str .= 'i'; break;
case 'ß':
$_str .= 'ss'; break;
case 'Ù': case 'Ú': case 'Û':
$_str .= 'U'; break;
case 'ù': case 'ú': case 'û':
$_str .= 'u'; break;
case 'Ü':
$_str .= 'UE'; break;
case 'ü':
$_str .= 'ue'; break;
case 'Ý':
$_str .= 'Y'; break;
case 'ý': case 'ÿ':
$_str .= 'y'; break;
case 'Ð':
$_str .= 'D'; break;
case ' ': $_str .= '_'; break;
case '_': $_str .= '_'; break;
case '/': case '\'': case '-': case ':':
$_str .= '-'; break;
case '.':
$_str .= '.'; break;
default : if (ereg('[A-Za-z0-9\(\)]', $ch)) { $_str .= $ch; } break;
}
}
switch ($str_type)
{
case "image/pjpeg": case "image/gif": case "image/x-png": case "image/bmp":
$_str_replace = array("", "", "", "");
$_str = str_replace($_str_replace, "", $_str);
$_str = "".$_str;
break;
case "video/x-ms-wmv": case "video/avi": case "video/mpeg":
$_str_replace = array("", "", "", "");
$_str = str_replace($_str_replace, "", $_str);
$_str = "".$_str;
break;
case "audio/x-ms-wma": case "audio/basic": case "audio/wav": case "audio/mpeg":
$_str_replace = array("", "", "", "");
$_str = str_replace($_str_replace, "", $_str);
$_str = "".$_str;
break;
case "application/x-zip-compressed":
$_str_replace = array("", "", "", "");
$_str = str_replace($_str_replace, "", $_str);
$_str = "".$_str;
break;
default :
$_str = $_str ; break;
}
$_str = str_replace("{$spaceChar}{$spaceChar}", "{$spaceChar}", $_str);
//$_str = str_replace("{$spaceChar}-", '-', $_str);
//$_str = str_replace("-{$spaceChar}", '-', $_str);
return $_str;
}
?>
</table>
</p>
<table align=center border=0>
<tr><td align=center>
<script language="JavaScript" src="
http://impdk.tradedoubler.com/imp/94908/942248" charset="ISO-8859-1"></script>
<p align="center"><b><font face="Verdana" size="2"><SCRIPT LANGUAGE=JAVASCRIPT><!--
function regler(fileName) {
myFloater = window.open('','myWindowa','scrollbars=no,status=no,width=700,height=500')
myFloater.location.href = fileName;
}
//--></SCRIPT></font></b>
<img border="0" src="../images/scroll2.gif" width="344" height="33"><br>
<br>
<?
$dir = "/home/web/web46494/upload/files/";
$size = 0;
function dirsize($dir) {
$dh = @opendir($dir);
while (($file = @readdir($dh)) !== false)
if ($file != "." and $file != "..") {
$path = $dir."/".$file;
if (is_dir($path))
$size += dirsize($path);
elseif (is_file($path))
$size += filesize($path);
}
@closedir($dh);
return $size;
}
$total = "419430400";
$size = dirsize($dir);
$used = round($size/(1024*1024), 2);
$total = round($total/(1024*1024), 2);
$pct = round((100/$total)*$used, 2);
echo "".$used." MB / ".$total." MB (".$pct."%)";
?> </td></tr>
<tr><td>
<?
if ($used < $total)
{ echo "<form ENCTYPE='multipart/form-data' method='post' action='upload.php'>";
echo "<table width=100%>";
echo "<tr><td align='center'>";
echo "<input type='hidden' name='form_password' size=10' value='test'><br>";
echo "<input type='file' name='userfile'><br>";
echo " <input type='submit' name='upload' value=' Upload '> <input type='submit' name='refresh' value=' Opdater '>";
echo "</td></tr>";
echo "</td></tr>";
echo "<tr><td><?=$message</td></tr>";
echo "</table>";
echo "</form>";
}
else
{
echo "<table width=100%>";
echo "<tr><td align=center>";
echo "Upload mappen er fyldt!</td></tr>";
echo "</table>";
}
?>
</td></tr>
<tr><td>
<table width=100%>
</table>
<div align="center">
<table width="500" cellpadding="2">
<tr>
<td> </td>
<td>
<p align="center" style="margin-right: 25px"> </td>
<td> </td>
<td> </td>
</tr>
<?
switch ($_GET[field])
{
case "name":
$str_link = "<tr><td>";
if ($_GET[order] == "asc")
{
$str_link .= "<a href='upload.php?field=name&order=desc' class='menu'>Filnavn</a> <a href='upload.php?field=name&order=desc' class='menu'><img border=0 src=sortasc.gif /></a>";
}
else
{
$str_link .= "<a href='upload.php?field=name&order=asc' class='menu'>Filnavn</a> <a href='upload.php?field=name&order=asc' class='menu'><img border=0 src=sortdesc.gif /></a>";
}
$str_link .= "</td><td><a href='upload.php?field=date&order=asc' class='menu'>Upload dato</a></td><td align=right><a href='upload.php?field=size&order=asc' class='menu'>KB</a></td></tr>" ;
echo $str_link;
break;
case "date":
$str_link = "<tr><td><a href='upload.php?field=name&order=asc' class='menu'>Filnavn</a></td><td>";
if ($_GET[order] == "asc")
{
$str_link .= "<a href='upload.php?field=date&order=desc' class='menu'>Upload dato</a> <a href='upload.php?field=date&order=desc' class='menu'><img border=0 src=sortasc.gif /></a>";
}
else
{
$str_link .= "<a href='upload.php?field=date&order=asc' class='menu'>Upload dato</a> <a href='upload.php?field=date&order=asc' class='menu'><img border=0 src=sortdesc.gif /></a>";
}
$str_link .= "</td><td align=right><a href='upload.php?field=size&order=asc' class='menu'>KB</a></td></tr>" ;
echo $str_link;
break;
case "size":
$str_link = "<tr><td><a href='upload.php?field=name&order=asc' class='menu'>Filnavn</a></td><td><a href='upload.php?field=date&order=asc' class='menu'>Upload dato</a></td><td align=right>";
if ($_GET[order] == "asc")
{
$str_link .= "<a href='upload.php?field=size&order=desc' class='menu'>KB</a> <a href='upload.php?field=size&order=desc' class='menu'><img border=0 src=sortasc.gif /></a>";
}
else
{
$str_link .= "<a href='upload.php?field=size&order=asc' class='menu'>KB</a> <a href='upload.php?field=size&order=asc' class='menu'><img border=0 src=sortdesc.gif /></a>";
}
$str_link .= "</td></tr>" ;
echo $str_link;
break;
default :
echo "<tr><td><a href='upload.php?field=name&order=desc' class='menu'>Filnavn <img border=0 src=sortasc.gif /></a></td><td><a href='upload.php?field=date&order=asc' class='menu'>Upload dato</a></td><td align=right><a href='upload.php?field=size&order=asc' class='menu'> KB</a></td></tr>" ; break;
}
?>
<tr>
<td background="../images/bg.gif" height="1" colspan=4>
<p style="margin-right: 25px"></td>
</tr>
<?=display_files($upload_dir, $form_password, $admin_password)?>
</table>
<table border="0" width="500" bordercolor="#000000" id="table7" style="border-collapse: collapse">
<tr>
<td height="1" background="../images/bg.gif">
</tr>
</table>
</div>
</td></tr>
</table>
<br>
<table width="100%" border="0" align="center" cellpadding="20" cellspacing="0">
</table>
<div align="center">
</div>
<p> <!-- Chart Basis HTML kode start v003 -->
<script language="javascript" type="text/javascript">
<!--
document.write('<a href="
http://www.chart.dk/ref.asp?ct=v003&id=109361" target="_blank">');
var myref; myref=document.referrer; if(top.document.referrer!=null) myref=top.document.referrer;
document.write('<img src="
http://cluster.chart.dk/chart.asp?id=109361&style=7&secID=' + Math.random()*10000000 + '&ref=' + escape(myref) + '" border="0" alt="Chart.dk"><');
document.write('/a>');
//-->
</script>
<noscript>
<a href="
http://www.chart.dk/ref.asp?ct=v003&id=109361" target="_blank"><img src="
http://cluster.chart.dk/chart.asp?id=109361&style=7&secID=1" border="0" alt="Chart.dk"></a>
</noscript>
<!-- Chart Basis HTML kode slut v003 --></p>
<p align="center"> </p>
</body>
</html>