Pagine dinamiche in Php raggiungibili solo con login corretto

**overlockatore** · 06-03-2010, 18:34

ecco l'home di uploud

codice:

<?
/*
|---------------------------------------------------|
|				  LICENSE BLOCK START			    |
|---------------------------------------------------|
|			  The Uploader 2.0 - Stable			    |
|---------------------------------------------------|
|													|
| Creators:          Andy94 & Ste_95				|
|  Company:				MegaLab.it					|
|     Site:           www.MegaLab.it                |
|  License:			 Creative Commons				|
| Released:          Semptember, 2009				|
|													|
|---------------------------------------------------|
|				  LICENSE BLOCK END				    |
|---------------------------------------------------|
*/
?>
<html>
<a href="../gabriele97/gabriele97.php">
<?
echo "$nascosto";
?>
</a></html>
<?
switch($_GET['option'])
{
    default:
	header("Location: http://www.gabriele97.altervista.org...php?page=login");
	break;
    case 'home':if(isset($_COOKIE['permesso']) && $_COOKIE['permesso'] == 'ok') {}else{include ("../errore2.html");}
//Importing config file and start session
session_start();
if (file_exists("MainHandler.php")) {
	@include("MainHandler.php");
} else {
	die('<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"><html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en"><head><title>The Uploader 2.0 - Critical Error</title></head><body><h1 style="text-align: center;margin: 0px;padding: 3px;background-color: #F0DC82;border: 3px solid #FF0000;width: 80%;margin-top: 3px;display: block;margin-left: auto;margin-right: auto;background-image: url(\'images/coreerror.png\');background-repeat: no-repeat;background-position: left;">Impossibile trovare il gestore delle eccezioni!</h1></body></html>');
}
head("Indice"); ?>
<html>
<body>
	<div id="page">
		<? navigation(); ?>
		<div id="main">
			<span class="crnrs-top"><span></span></span>
		<?
		if(!isset($_SESSION['upload_limit']) AND $main['upload_limit'] != 0 OR $_SESSION['upload_limit'] != 0 AND $main['upload_limit'] != 0 AND $_SESSION['upload_limit'] != date("d/m/Y")) {
			$_SESSION['upload_limit']=0;
			$_SESSION['time_upload_limit']=time();
		}
		$BannedUpload['query']="SELECT id FROM " . $main['table_prefix'] . "_ban WHERE IP='" . $_SERVER['REMOTE_ADDR'] . "' AND bannedfrom='UPLOAD'";
		$BannedUpload['execute']=mysql_query($BannedUpload['query']) or error("Impossibile eseguire la query", mysql_error());
			//Check if the upload script is in manteniance mode
			if($main['general_manteniance']==1) {
				message("Stato di manutenzione", $main['general_message']);
				closeall();
				exit;
				//Check if the user is banned from uploading files
			} else if ($main['upload_manteniance']==1) {
				message("Stato di manutenzione", $main['upload_message']);
				closeall();
				exit;
			} else if ($_SESSION['upload_limit'] == $main['upload_limit'] AND date("d/m/Y", $_SESSION['time_upload_limit']) == date("d/m/Y") AND $main['upload_limit'] != 0) {
				message("Limite upload raggiunto", "Secondo le regole stabilite dall'amministratore, hai raggiunto il numero massimo di upload giornaliero.");
				closeall();
				exit;
			} else if(mysql_num_rows($BannedUpload['execute']) != 0) {
				message("Ip Bannato", "Il tuo IP risulta essere stato bannato dall'Amministratore.");
				closeall(); 
				exit;
			} ?>
				<h3 class="title">The Uploader 2.0 - Sezione Upload</h3>
				<hr />
				<?
				if($main['show_in_index'] == 1){
					echo'<div id="allowedext">
						<fieldset><legend>Estensioni consentite</legend>
							<p style="margin: 0px; text-align: center;">L\'Amministratore consente upload file con queste estensioni.</p>';
							while($temp = each($main['allowed_ext'])) {
								if($n!=0) {
									echo ' | ';
								}
								echo $temp['value'];
								++$n;
							}
						echo'</fieldset>
					</div>';
				}
				?>
				<form id="upload" method="post" enctype="multipart/form-data" action="ajax/upload.php">
					<div id="slots">
					<? while ($main['max_file_slots'] > 0) {
							echo '<input type="file" class="input" id="input_' . $main['max_file_slots'] . '" name="upfile_' . $main['max_file_slots'] . '" size="90" />
							';
							--$main['max_file_slots'];
						}
					if($main['captcha_upload'] == 1) {
						require_once("api/captchahandler.php");
						@captcha_show("Upload");
					}
					?>
					</div>
					<p style="text-align: center;">
						<input type="reset" id="reset" name="reset" value="Svuota campi" class="deletebutton" style="display: inline;" />
					<?
					if($main['captcha_upload'] == 0) {
						echo '<input type="submit" id="startupload" name="startupload" value="Avvia Upload" class="startbutton" style="display: inline;" onclick="window.open(\'ajax/upload.php\',\'mywindow\',\'width=500,height=300,scrollbars=1\');this.form.target=\'mywindow\';this.form.submit()" />';
					} else {
						echo '<input type="button" id="startupload" name="startupload" value="Avvia Upload" class="startbutton" style="display: inline;" onclick="$(\'captcha\').setStyle(\'display\', \'block\');" />';
					}
					?>
					</p>
				</form>
			<span class="crnrs-bottom"><span></span></span>
		</div>
		<? ?>
	</div>
</body>
</html>
<? 
break;
}
?>

Discussione: Pagine dinamiche in Php raggiungibili solo con login corretto

Strumenti discussione

Ricerca discussione

Visualizza

Visualizzazione discussione

Permessi di invio