01.
<?php
02.
03.
$url
=
'upload/files/'
.time().
"_"
.
$_FILES
[
'upload'
][
'name'
];
04.
05.
06.
if
((
$_FILES
[
'upload'
] ==
"none"
) OR (
empty
(
$_FILES
[
'upload'
][
'name'
])) )
07.
{
08.
$message
=
"No file uploaded."
;
09.
}
10.
else
if
(
$_FILES
[
'upload'
][
"size"
] == 0)
11.
{
12.
$message
=
"The file is of zero length."
;
13.
}
14.
else
if
((
$_FILES
[
'upload'
][
"type"
] !=
"image/pjpeg"
) AND (
$_FILES
[
'upload'
][
"type"
] !=
"image/jpeg"
) AND (
$_FILES
[
'upload'
][
"type"
] !=
"image/png"
) AND (
$_FILES
[
'upload'
][
"type"
] !=
"image/gif"
))
15.
{
16.
$message
=
"The image must be in either GIF , JPG or PNG format. Please upload a JPG or PNG instead."
;
17.
}
18.
19.
else
if
(!
is_uploaded_file
(
$_FILES
[
'upload'
][
"tmp_name"
]))
20.
{
21.
$message
=
"You may be attempting to hack our server. We're on to you; expect a knock on the door sometime soon."
;
22.
}
23.
else
{
24.
$message
=
""
;
25.
26.
$move
= move_uploaded_file(
$_FILES
[
'upload'
][
'tmp_name'
],
$url
);
27.
if
(!
$move
)
28.
{
29.
$message
=
"Error moving uploaded file. Check the script is granted Read/Write/Modify permissions."
;
30.
}
31.
32.
}
33.
34.
35.
if
(
$message
!=
""
)
36.
{
37.
$url
=
""
;
38.
}
39.
40.
$funcNum
=
$_GET
[
'CKEditorFuncNum'
] ;
41.
echo
"<script type='text/javascript'>window.parent.CKEDITOR.tools.callFunction($funcNum, '$url', '$message');</script>"
;
42.
43.
?>