KGRKJGETMRETU895U-589TY5MIGM5JGB5SDFESFREWTGR54TY
Server : Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 DAV/2 PHP/5.2.17
System : Linux localhost 2.6.18-419.el5 #1 SMP Fri Feb 24 22:47:42 UTC 2017 x86_64
User : nobody ( 99)
PHP Version : 5.2.17
Disable Function : NONE
Directory :  /home/queenjbs/junsu/admin/Proc/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Current File : //home/queenjbs/junsu/admin/Proc/Wallpaper_proc.php
<?include $_SERVER['DOCUMENT_ROOT']."/conf/conf_dir.php";?>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<?
$todayfull = date("YmdHis");
$tableName = "wallpaper";
//$contents = addslashes($contents); //특수문자db에 들어가게..
if ($addfile1024_name) {
	$savedir 	= $_SERVER['DOCUMENT_ROOT']."/files/muti/wallpaper";
	echo $addfile_ext = strtolower(substr($addfile1024_name,-3)); // 확장자
	if($addfile_ext=="jpg" or $addfile_ext=="gif" or $addfile_ext=="png" or $addfile_ext=="bmp" or $addfile_ext=="peg") { //소문자.. 대문자.. 구분가능.. 
		$vName = $tableName."_".$todayfull."A_1024.".$addfile_ext; //화명명 변경 예)20061212_6437210.jpg
		$realName = $addfile1024_name;
		if(!copy($addfile1024, "$savedir/$vName")) {
			echo("실패");
			exit;
		}
		unlink($addfile1024);
		include "./makesontop.php";
	}else{
?>
		<SCRIPT LANGUAGE="JavaScript">
		<!--
			alert("添付ファイルはイメージファイル(jpg,gif,bmp,png)のみアップロード可能です");
			document.history.back(-1);
		//-->
		</SCRIPT>
<? 
	exit;
	}
}

if ($addfile1600_name) {
	$savedir 	= $_SERVER['DOCUMENT_ROOT']."/files/muti/wallpaper";
	$addfile_ext = strtolower(substr($addfile1600_name,-3)); // 확장자
	if($addfile_ext=="jpg" or $addfile_ext=="gif" or $addfile_ext=="png" or $addfile_ext=="bmp" or $addfile_ext=="peg") { //소문자.. 대문자.. 구분가능.. 
		$vName1 = $tableName."_".$todayfull."B_1280.".$addfile_ext; //화명명 변경 예)20061212_6437210.jpg
		$realName1 = $addfile1600_name;
		if(!copy($addfile1600, "$savedir/$vName1")) {
			echo("실패");
			exit;
		}
		unlink($addfile1600);
	}else{
?>
		<SCRIPT LANGUAGE="JavaScript">
		<!--
			alert("添付ファイルはイメージファイル(jpg,gif,bmp,png)のみアップロード可能です");
			document.history.back(-1);
		//-->
		</SCRIPT>
<? 
	exit;
	}
}

if ($addfile1680_name) {
	$savedir 	= $_SERVER['DOCUMENT_ROOT']."/files/muti/wallpaper";
	$addfile_ext = strtolower(substr($addfile1680_name,-3)); // 확장자
	if($addfile_ext=="jpg" or $addfile_ext=="gif" or $addfile_ext=="png" or $addfile_ext=="bmp" or $addfile_ext=="peg") { //소문자.. 대문자.. 구분가능.. 
		$vName2 = $tableName."_".$todayfull."C_1920.".$addfile_ext; //화명명 변경 예)20061212_6437210.jpg
		$realName2 = $addfile1680_name;
		if(!copy($addfile1680, "$savedir/$vName2")) {
			echo("실패");
			exit;
		}
		unlink($addfile1680);
	}else{
?>
		<SCRIPT LANGUAGE="JavaScript">
		<!--
			alert("添付ファイルはイメージファイル(jpg,gif,bmp,png)のみアップロード可能です");
			document.history.back(-1);
		//-->
		</SCRIPT>
<? 
	exit;
	}
}
if($idx){
	if($mode == "proc"){
			if($vName){
				$fileName = get_db("select file_name from files where module_name='$tableName' and module_no = '$idx' and order_by= 1");
				
				$del_file= $_SERVER['DOCUMENT_ROOT']."/files/muti/wallpaper/".$fileName;
				if($fileName && is_file($del_file)) unlink($del_file);
				$sontop_file= $_SERVER['DOCUMENT_ROOT']."/files/muti/wallpaper/sontop/".$fileName;
				if($fileName && is_file($sontop_file)) unlink($sontop_file);
				$resize_file= $_SERVER['DOCUMENT_ROOT']."/files/muti/wallpaper/resize/".$fileName;
				if($fileName && is_file($resize_file)) unlink($resize_file);
				
				$tmpvName		= $vName;
				$tmpRealName	= $realName;

				$file_query = "update files set original_name='$tmpRealName',file_name='$tmpvName',file_type='$addfile_ext',reg_date=now() where module_name='$tableName' and module_no = '$idx' and order_by= 1";
				$result = mysql_query($file_query,$db_con);

				
			}else if($vName1){
				$fileName = get_db("select file_name from files where module_name='$tableName' and module_no = '$idx' and order_by= 2");
				
				$del_file=$_SERVER['DOCUMENT_ROOT']."/files/muti/wallpaper/".$fileName;
				if($fileName && is_file($del_file)) unlink($del_file);
				$sontop_file=$_SERVER['DOCUMENT_ROOT']."/files/muti/wallpaper/sontop/".$fileName;
				if($fileName && is_file($sontop_file)) unlink($sontop_file);
				$resize_file=$_SERVER['DOCUMENT_ROOT']."/files/muti/wallpaper/resize/".$fileName;
				if($fileName && is_file($resize_file)) unlink($resize_file);
				
				$tmpvName		= $vName1;
				$tmpRealName	= $realName1;

				$file_query = "update files set original_name='$tmpRealName',file_name='$tmpvName',file_type='$addfile_ext',reg_date=now() where module_name='$tableName' and module_no = '$idx' and order_by= 2";
				$result = mysql_query($file_query,$db_con);

				
			}else if($vName2){
				$fileName = get_db("select file_name from files where module_name='$tableName' and module_no = '$idx' and order_by= 3");
				
				$del_file=$_SERVER['DOCUMENT_ROOT']."/files/muti/wallpaper/".$fileName;
				if($fileName && is_file($del_file)) unlink($del_file);
				$sontop_file=$_SERVER['DOCUMENT_ROOT']."/files/muti/wallpaper/sontop/".$fileName;
				if($fileName && is_file($sontop_file)) unlink($sontop_file);
				$resize_file=$_SERVER['DOCUMENT_ROOT']."/files/muti/wallpaper/resize/".$fileName;
				if($fileName && is_file($resize_file)) unlink($resize_file);
				
				$tmpvName		= $vName2;
				$tmpRealName	= $realName2;

				$file_query = "update files set original_name='$tmpRealName',file_name='$tmpvName',file_type='$addfile_ext',reg_date=now() where module_name='$tableName' and module_no = '$idx' and order_by= 3";
				$result = mysql_query($file_query,$db_con);

				
			}
			
			//변수의 값을 내는것 알아서 바꾸기.
			/*for($i=0; $i< 3; $i++){
				echo "$i 값은?? <br>";
				$puName = $vName.$i;
				if($puName){
					$k =$i+1;
					$fileName = get_db("select file_name from files where module_name='$tableName' and module_no = '$idx' and order_by= $k");

					echo $del_file=$_SERVER['DOCUMENT_ROOT']."/files/muti/wallpaper/".$fileName;
					if($fileName && is_file($del_file)) unlink($del_file);
					$sontop_file=$_SERVER['DOCUMENT_ROOT']."/files/muti/wallpaper/sontop/".$fileName;
					if($fileName && is_file($sontop_file)) unlink($sontop_file);
					$resize_file=$_SERVER['DOCUMENT_ROOT']."/files/muti/wallpaper/resize/".$fileName;
					if($fileName && is_file($resize_file)) unlink($resize_file);

					$tmpvName		= $vName.$i;
					$tmpRealName	= $realName.$i;

					echo $file_query = "update files set original_name='$tmpRealName',file_name='$tmpvName',file_type='$addfile_ext',reg_date=now() where module_name='$tableName' and module_no = '$idx' and order_by= $k";
					//$result = mysql_query($file_query,$db_con);
				}
			}*/
		if(!$is_secret) $is_secret="N";
		$queryupok = "update photo_$tableName set subject='$subject',is_secret ='$is_secret',modify_date=now() where no = '$idx'";
		
		$boardNo= $idx;
	}else if($mode == "del"){
		//3개 찾고 기존 파일 삭제
		$QUERY  = "select * from files where module_name='$tableName' and module_no = '$idx' order by no";
		$result= mysql_query($QUERY,$db_con);
		$total = mysql_affected_rows();

			for($j=1; $i<= $total; $i++){
			$row = mysql_fetch_array($result);
					$fileName = $row[file_name];
					if($fileName){
						//echo $fileName;
						$del_file=$_SERVER['DOCUMENT_ROOT']."/files/muti/wallpaper/".$fileName;
						if($fileName && is_file($del_file)) unlink($del_file);
						$sontop_file=$_SERVER['DOCUMENT_ROOT']."/files/muti/wallpaper/sontop/".$fileName;
						if($fileName && is_file($sontop_file)) unlink($sontop_file);
						$resize_file=$_SERVER['DOCUMENT_ROOT']."/files/muti/wallpaper/resize/".$fileName;
						if($fileName && is_file($resize_file)) unlink($resize_file);
					}
					$fileName =""; //파일 초기화
			}//for end
			$delqry =  mysql_query("DELETE FROM files where module_name='$tableName' and module_no = '$idx'",$db_con);
		
			$queryupok = "DELETE FROM photo_$tableName where no = '$idx'";
	}
	
	$queryupok_result = mysql_query($queryupok,$db_con);	
}else{
	$file_count = 3;
	$query = "INSERT INTO photo_$tableName
									(module_no,user_no,user_id,user_name,reg_date,modify_date,subject,is_secret,files_count,hit,ip)
								VALUES
									('$tableName', '$user_no','$userid','$username',now(),now(),'$subject','$is_secret','$file_count','0','$REMOTE_ADDR')";
	
	//echo $query;
	$result = mysql_query($query,$db_con);
	$boardNo = get_db("select max(no) from photo_$tableName");
	if($vName){
		
		$orderBy = '1';
		$file_query = "INSERT INTO files
										(module_no,module_name,original_name,file_name,file_type,order_by,reg_date)
									VALUES
										('$boardNo','$tableName', '$realName','$vName','$addfile_ext','$orderBy',now())";

		echo $file_query;
		$result = mysql_query($file_query,$db_con);
	}
	if($vName1){
		$orderBy = '2';
		$file_query = "INSERT INTO files
										(module_no,module_name,original_name,file_name,file_type,order_by,reg_date)
									VALUES
										('$boardNo','$tableName', '$realName1','$vName1','$addfile_ext','$orderBy',now())";

		echo $file_query;
		$result = mysql_query($file_query,$db_con);
	}
	if($vName2){
		$orderBy = '3';
		$file_query = "INSERT INTO files
										(module_no,module_name,original_name,file_name,file_type,order_by,reg_date)
									VALUES
										('$boardNo','$tableName', '$realName2','$vName2','$addfile_ext','$orderBy',now())";

		echo $file_query;
		$result = mysql_query($file_query,$db_con);
	}
	
}

if($mode == "del"){
			$modePath = "list";
			$alertName = "削除";
			$linkULR = "../Wallpaper.php";
}else{
			$modePath = "view";
			$alertName = "保存";
			$linkULR = "../Wallpaper_view.php";
}
mysql_close();
?>


<form name="form" method="post" action="<?=$linkULR?>" onsubmit="return validate();" enctype="multipart/form-data">
<input type="hidden" name="mode" value="<?=$mode?>">
<input type="hidden" name="idx" value="<?=$boardNo?>">
</form>
<script>
alert("<?=$alertName?> OK");
document.form.submit();
</script>

Anon7 - 2021