Файл: adultscript-2.0.3-pro/files/mobile/templates/default/extend/ajax/upload.plugin.php
Строк: 25
<?php
defined('_VALID') or die('Restricted Access!');
function ajax_plugin_upload()
{
// needs more security here
$unique = (isset($_GET['unique']) && ctype_digit($_GET['unique'])) ? trim($_GET['unique']) : null;
$ext = (isset($_GET['ext'])) ? substr(trim($_GET['ext']), 1) : null;
if (isset($_FILES['myFile']) && is_uploaded_file($_FILES['myFile']['tmp_name']) && $unique && $ext) {
$file = $_FILES['myFile']['tmp_name'];
if ($ext != VFile::ext($_FILES['myFile']['name'])) {
return;
}
$extensions = VF::cfg_item('module.video.video_allowed_ext');
if (!in_array($ext, $extensions)) {
return;
}
$max_size = VF::cfg_item('module.video.video_max_size')*1024*1024;
if (filesize($file) > $max_size) {
return;
}
$video = VF::factory('video');
if ($video->load($file)) {
$dst = TMP_DIR.'/uploads/'.$unique.'.'.$ext;
move_uploaded_file($file, $dst);
echo 'success';
}
}
}