Файл: vsime.com/fotos/inc/act_prev.php
Строк: 36
<?php
$foto = mysqli_fetch_array(mysqli_query($dbi, "SELECT * FROM `foto` WHERE `id` = '".intval($_GET['id'])."' AND `type` = 'foto'"));
if ($foto != NULL)
{
$width = intval($_GET['width']);
$height = intval($_GET['height']);
$dir = dir_fotos_info($foto['id_dir']);
$ank = profile($foto['id_user']); // гг
if ($ank['avatar']==$foto['id'] && ($width == 48 && $height == 48 || $width == 128 && $height == 128))
{
} else {
if (!dir_fotos_access($dir, NULL, 1))
{
dir_fotos_access($dir, access_denied());
}
}
if ($width == 48 && $height == 48 || $width == 128 && $height == 128 || $width == 96 && $height == 96 || $width == 256 && $height == 256)
{
$foto['path'] = H."system/files/fotos/d$foto[id_dir]/".$foto['id'].".dat";
if (!is_file(H."i/screen_tmp/foto_".$foto['id']."_".$width."x".$height.".png"))$name = create_screen($foto['path'], H."i/screen_tmp/", $width, $height, NULL, "foto_".$foto['id']."_".$width."x".$height.".png", 0, 0);
else $name = "foto_".$foto['id']."_".$width."x".$height.".png";
if ($name) {
header("Content-type: image/png");
echo file_get_contents(H."i/screen_tmp/foto_".$foto['id']."_".$width."x".$height.".png");
exit();
}
$text = "Invalid image";
} else {
$text = "Invalid size of image";
}
} else {
$text = "File not founded";
}
header("Content-type: image/png");
$image = imagecreate(200, 18);
$background_color = imagecolorallocate ($image, 255, 255, 255);
$count_chars = 2;
$black = imagecolorallocate($image, 255, 0, 0);
ImageString($image,6,$count_chars,1,$text,$black);
imagepng($image);
imagedestroy($image);
exit();
?>