| Server IP : 103.233.192.212 / Your IP : 18.222.231.86 Web Server : Apache/2 System : Linux sv1.inde.co.th 3.10.0-1160.36.2.el7.x86_64 #1 SMP Wed Jul 21 11:57:15 UTC 2021 x86_64 User : sumpatuan ( 1058) PHP Version : 5.5.38 Disable Function : symlink,shell_exec,exec,proc_close,proc_open,popen,system,dl,putenv,passthru,escapeshellarg,escapeshellcmd,pcntl_exec,proc_get_status,proc_nice,proc_terminate,pclose,ini_alter,virtual,openlog,ini_restore MySQL : ON | cURL : ON | WGET : OFF | Perl : OFF | Python : OFF | Sudo : OFF | Pkexec : OFF Directory : /home/sumpatuan/domains/sumpatuan.go.th/private_html/admin/sub/action/ |
Upload File : |
<?php
require_once('session_backend_administrator.php');
header('Content-Type: text/html; charset=UTF-8');
date_default_timezone_set("Asia/Bangkok");
$datetime = date('d/m/Y H.i');
//// function Transparency BG
function setTransparency($new_image,$image_source){
$transparencyIndex = imagecolortransparent($image_source);
$transparencyColor = array('red' => 255, 'green' => 255, 'blue' => 255);
if ($transparencyIndex >= 0) {
$transparencyColor = imagecolorsforindex($image_source, $transparencyIndex);
}
$transparencyIndex = imagecolorallocate($new_image, $transparencyColor['red'], $transparencyColor['green'], $transparencyColor['blue']);
imagefill($new_image, 0, 0, $transparencyIndex);
imagecolortransparent($new_image, $transparencyIndex);
}
if($STT_login=="admin_login_true"){
if( !isset($_POST['txt_id']) or !isset($_POST['txt_name']) or !isset($_POST['txt_type']) or !isset($_POST['txt_link']) ){
echo "<SCRIPT type='text/javascript'>
alert('กรุณากรอกข้อมูลให้ครบ');
window.location.replace(document.referrer);
</SCRIPT>";
exit;
}else{
$data_idweblink = trim($con_db_administrator->real_escape_string($_POST['txt_id']));
$data_nameweblink = trim($con_db_administrator->real_escape_string($_POST['txt_name']));
$data_typeweblink = $con_db_administrator->real_escape_string($_POST['txt_type']);
$data_weblink = trim($con_db_administrator->real_escape_string($_POST['txt_link']));
$data_sttweblink = $con_db_administrator->real_escape_string($_POST['statusshow']);
$data_linkweblink = $con_db_administrator->real_escape_string($_POST['linkweblink']);
$lastupdate_weblink = $datetime;
/////// เช็คข้อมูล id ซ้ำ
$sql_check_id = " SELECT COUNT(*) FROM `data_weblink` WHERE `id_weblink`='$data_idweblink' ";
$qr_check_id = mysqli_query($con_db_administrator, $sql_check_id) or trigger_error("sql_check_id", E_USER_ERROR);
$rs_check_id = mysqli_fetch_row($qr_check_id);
$check_id = $rs_check_id[0];
if($check_id >= 1){
echo "<SCRIPT type='text/javascript'>
alert('ลำดับแสดงผล [ $data_idweblink ] ซ้ำ');
window.location.replace(document.referrer);
</SCRIPT>";
exit;
}else{
$dt_addfile = date('YmdHis');
$filedoc = $_FILES["uploadFile"]["tmp_name"];
$oldname_filedoc = trim($_FILES['uploadFile']['name']);
$type_filedoc = pathinfo($_FILES['uploadFile']['name'],PATHINFO_EXTENSION);
$newname_filedoc = $dt_addfile."_".$data_nameweblink.".".$type_filedoc;
$keep_filedoc = "../../../doc/bn/";
$move_filedoc = $keep_filedoc.$newname_filedoc;
$path_filedoc = "doc/bn/".$newname_filedoc;
$width=200;
$height=50;
if( exif_imagetype($filedoc) == IMAGETYPE_JPEG ) {
$size=GetimageSize($filedoc);
$filedoc_orig = ImageCreateFromJPEG($filedoc);
$photoX = ImagesX($filedoc_orig);
$photoY = ImagesY($filedoc_orig);
$filedoc_fin = ImageCreateTrueColor($width, $height);
setTransparency($filedoc_fin,$filedoc_orig);
ImageCopyResampled($filedoc_fin, $filedoc_orig, 0, 0, 0, 0, $width+1, $height+1, $photoX, $photoY);
ImageJPEG($filedoc_fin, $move_filedoc);
ImageDestroy($filedoc_orig);
ImageDestroy($filedoc_fin);
}elseif( exif_imagetype($filedoc) == IMAGETYPE_PNG ){
$size=GetimageSize($filedoc);
$filedoc_orig = ImageCreateFromPNG($filedoc);
$photoX = ImagesX($filedoc_orig);
$photoY = ImagesY($filedoc_orig);
$filedoc_fin = ImageCreateTrueColor($width, $height);
setTransparency($filedoc_fin,$filedoc_orig);
ImageCopyResampled($filedoc_fin, $filedoc_orig, 0, 0, 0, 0, $width+1, $height+1, $photoX, $photoY);
imagepng($filedoc_fin, $move_filedoc);
ImageDestroy($filedoc_orig);
ImageDestroy($filedoc_fin);
}elseif( exif_imagetype($filedoc) == IMAGETYPE_GIF ){
$size=GetimageSize($filedoc);
$filedoc_orig = ImageCreateFromGIF($filedoc);
$photoX = ImagesX($filedoc_orig);
$photoY = ImagesY($filedoc_orig);
$filedoc_fin = ImageCreateTrueColor($width, $height);
setTransparency($filedoc_fin,$filedoc_orig);
ImageCopyResampled($filedoc_fin, $filedoc_orig, 0, 0, 0, 0, $width+1, $height+1, $photoX, $photoY);
imagegif($filedoc_fin,$move_filedoc);
ImageDestroy($filedoc_orig);
ImageDestroy($filedoc_fin);
}else{
echo "<SCRIPT type='text/javascript'>
alert('เลือกไฟล์รูปภาพให้ถูกต้อง (เฉพาะไฟล์นามสกุล png, gif, jpg/jpeg)');
window.location.replace(document.referrer);
</SCRIPT>";
exit;
}
$insert_weblink = " INSERT INTO `data_weblink`(`id_weblink`,`name_weblink`, `type_weblink`, `link_weblink`, `img_weblink`, `stt_weblink`, `lastupdate_weblink`)
VALUES ( '$data_idweblink','$data_nameweblink', '$data_typeweblink', '$data_weblink', '$path_filedoc', '$data_sttweblink', '$lastupdate_weblink' )";
$action_weblink = $con_db_administrator->query($insert_weblink);
if(!$action_weblink){
echo "<SCRIPT type='text/javascript'>
alert('เพิ่มข้อมูลไม่สำเร็จ กรุณาลองใหม่อีกครั้ง');
window.location.replace('../$data_linkweblink');
</SCRIPT>";
exit;
}else{
echo "<SCRIPT type='text/javascript'>
alert('เพิ่มข้อมูลใหม่ สำเร็จ');
window.location.replace('../$data_linkweblink');
</SCRIPT>";
exit;
}
}
}
}else{
echo "<SCRIPT type='text/javascript'>
alert('กรุณาเข้าสู่ระบบ');
window.location.replace('../../index');
</SCRIPT>";
exit;
}
mysqli_close($con_db_administrator);
?>