ҳ̸Ҳ̸ҳ Rabiza Ekel ҳ̸Ҳ̸ҳ
:
18.119.113.14
:
47.103.87.29 / bstest.wagas.com.cn
:
Linux Wagas-WebServer 3.10.0-1160.11.1.el7.x86_64 #1 SMP Fri Dec 18 16:34:56 UTC 2020 x86_64
:
/
usr
/
html
/
www
/
admin
/
Upload File:
files >> //usr/html/www/admin/slider_add.php
<?php include_once("inc/function.php"); if($_SERVER["REQUEST_METHOD"] == "POST") { $slidername=isset($_POST['slidername'])?$_POST['slidername']:null; $level=isset($_POST['level'])?$_POST['level']:'1'; if($slidername&&$level){ if(isset($_GET['type'])&&$_GET['type']=='update'){ //更新操作 $id=$_GET['id']; $sql="select pic from wagas_slider WHERE id=$id"; $res=$mysqli->query($sql); if($res){ $row=$res->fetch_array(); }else{ $_SESSION['message']='id失效'; header("location:slider_add.php?type=update&id=$id");exit; } if(isset($_FILES)&&$_FILES['img']['size']>0){ // 处理图片上传 if (($_FILES['img']["type"] == "image/gif") || ($_FILES["img"]["type"] == "image/jpeg") || ($_FILES["img"]["type"] == "image/png") || ($_FILES["img"]["type"] == "image/pjpeg") || ($_FILES["img"]["type"] == "image/jpg")) { $fillname = $_FILES['img']['name']; // 得到文件全名 $dotArray = explode('.', $fillname); // 以.分割字符串,得到数组 $type = end($dotArray); // 得到最后一个元素:文件后缀 //uniqid以微秒计的当前时间,生成一个唯一的 ID $pathinfo = "/admin/img/sliderimg/".md5(uniqid(rand())).'.'.$type; $path = $_SERVER["DOCUMENT_ROOT"].$pathinfo; // 产生随机唯一的名字 move_uploaded_file( // 从临时目录复制到目标目录 $_FILES["img"]["tmp_name"], // 存储在服务器的文件的临时副本的名称 $path); $sql="update wagas_slider set `name`='$slidername',pic='$pathinfo',level='$level' WHERE id=$id"; $res=$mysqli->query($sql); if($res){ $res=unlink($_SERVER["DOCUMENT_ROOT"].$row['pic']); if($res){ $_SESSION['message']='更新成功'; header("location:slider_add.php?type=update&id=$id");exit; }else{ $_SESSION['message']='删除旧图片失败'; header("location:slider_add.php?type=update&id=$id");exit; } }else{ $_SESSION['message']='更新失败'; header("location:slider_add.php?type=update&id=$id");exit; } }else{ $_SESSION['message']="图片类型不合规范"; header("location:slider_add.php?type=update&id=$id");exit; } }else{ $sql="update wagas_slider set `name`='$slidername',level='$level' WHERE id=$id"; $res=$mysqli->query($sql); if($res){ $_SESSION['message']='更新成功'; header("location:slider_add.php?type=update&id=$id");exit; }else{ $_SESSION['message']='更新失败'; header("location:slider_add.php?type=update&id=$id");exit; } } }else{ //新增操作 if(isset($_FILES)&&$_FILES['img']['size']>0){ // 处理图片上传 if (($_FILES['img']["type"] == "image/gif") || ($_FILES["img"]["type"] == "image/jpeg") || ($_FILES["img"]["type"] == "image/png") || ($_FILES["img"]["type"] == "image/pjpeg") || ($_FILES["img"]["type"] == "image/jpg")) { $fillname = $_FILES['img']['name']; // 得到文件全名 $dotArray = explode('.', $fillname); // 以.分割字符串,得到数组 $type = end($dotArray); // 得到最后一个元素:文件后缀 //uniqid以微秒计的当前时间,生成一个唯一的 ID $pathinfo = "/admin/img/sliderimg/".md5(uniqid(rand())).'.'.$type; $path = $_SERVER["DOCUMENT_ROOT"].$pathinfo; // 产生随机唯一的名字 move_uploaded_file( // 从临时目录复制到目标目录 $_FILES["img"]["tmp_name"], // 存储在服务器的文件的临时副本的名称 $path); $sql="insert into wagas_slider (`name`,pic,level) VALUES ('$slidername','$pathinfo','$level')"; $res=$mysqli->query($sql); if($res){ $_SESSION['message']='新增成功'; header("location:slider_add.php");exit; }else{ $_SESSION['message']='插入失败'; header("location:slider_add.php");exit; } }else{ $_SESSION['message']="图片类型不合规范"; header("location:slider_add.php");exit; } }else{ $_SESSION['message']="请上传图片"; header("location:slider_add.php");exit; } } }else{ $_SESSION['message']="请填写完整后再提交"; header("location:slider_add.php");exit; } } if(isset($_GET['type'])&&$_GET['type']=='update'){ $id=isset($_GET['id'])?$_GET['id']:null; if($id){ $sql="select * FROM wagas_slider WHERE id=$id"; $res=$mysqli->query($sql); if($res){ $row=$res->fetch_array(); }else{ $_SESSION['message']="查询失败:".$mysqli->error; header("location:slider.php");exit; } } } ?> <?php include_once ("head.php");?> <div id="page-wrapper"> <div class="main-page"> <?php if(isset($_SESSION['message'])&&$_SESSION['message']):?> <div class="alert alert-danger"> <?php print $_SESSION['message'];?> <?php unset($_SESSION['message']);?> </div> <?php endif;?> <div class="form-three widget-shadow"> <?php if(isset($_GET['type'])&&$_GET['type']=='update'){?> <form class="form-horizontal" method="post" enctype="multipart/form-data" action="slider_add.php?type=update&id=<?php echo $row['id'];?>"> <?php }else{?> <form class="form-horizontal" method="post" enctype="multipart/form-data"> <?php }?> <div class="form-group"> <label for="focusedinput" class="col-sm-2 control-label">图片名</label> <div class="col-sm-8"> <input type="text" class="form-control1" id="focusedinput" placeholder="slider Name" name="slidername" required="required" <?php if(isset($row)){echo "value='".$row['name']."'";}?> > </div> </div> <div class="form-group"> <label for="focusedinput" class="col-sm-2 control-label">优先级</label> <div class="col-sm-8"> <input type="text" class="form-control1" id="focusedinput" placeholder="Level" name="level" <?php if(isset($row)){echo "value='".$row['level']."'";}?>> </div> </div> <?php if(isset($row)){?> <div class="form-group"> <label for="focusedinput" class="col-sm-2 control-label">图片</label> <div > <img width="600" height="400" src="<?php echo $row['pic'];?>"> </div> </div> <?php }?> <div class="form-group"> <label for="exampleInputFile" class="col-sm-2 control-label">更换图片(1920*710)</label> <div class="col-sm-8"> <input type="file" class="exampleInputFile" name="img" <?php if(!isset($row)){?>required="required" <?php }?> > </div> </div> <div class="form-group" style="text-align: center;margin: 0 auto;"> <button type="submit" class="btn btn-default">提交</button> </div> </form> </div> </div> </div> <?php include_once ("foot.php");?>
ҳ̸Ҳ̸ҳ Rabiza Ekel ҳ̸Ҳ̸ҳ