}else{?> }else{?> include "../../dbcon.inc"; $query=mysql_query("select * from $tname where num=$Snum"); if (!$row=mysql_fetch_array($query)){ ?> } else{ $query=mysql_query("select name from $tname where num=$Snum"); $rw=mysql_fetch_array($query); if ($sess_name!=$rw[name] && $sess_sadmin!="o"){ ?> } else{ $title=addslashes($title); $content=addslashes($content); if ($ph!=""){ $day = date('Ymdhis'); $save_dir="../gallery"; $isUploaded=FALSE; $upload_file=$ph; $upload_file1=$row[ph]; if($upload_file1!=""){ $file=$save_dir."/".$upload_file1; unlink($file); } if(!strcmp($upload_file,"none")){ continue; }else{ $upload_file_name=$ph_name; $upload_file_size=$ph_size; $upload_file_type=$ph_type; if ( $upload_file_size >= (150*1024)){ ?> }else{ $filename=explode(".",$upload_file_name); $extension=$filename[sizeof($filename)-1]; $rfilename=$day.".".$extension; if(!strcmp($extension,"php")||!strcmp($extension,"phtml")||!strcmp($extension,"inc")||!strcmp($extension,"txt")||!strcmp($extension,"asp")) { continue; } $dest=$save_dir."/".$rfilename; if ($upload_file_name!=""){ copy($upload_file,$dest); $ph_name=$rfilename; } $isUploaded=TRUE; } } $query="update $tname set title='$title',content='$content',ph='$ph_name',ph_alt='$ph_alt' where num=$Snum"; mysql_query($query); }else{ $query="update $tname set title='$title',content='$content',ph_alt='$ph_alt' where num=$Snum"; mysql_query($query); } echo(""); } } ?> }?> }?>