include "../cdbcon.inc";
$select_sql=mysql_query("select * from c_info where c_no='$c_no'");
if (!$rs=mysql_fetch_array($select_sql)){
?>
}
else
{
if ($c_teacherph!="" && $rs[photo]!=""){
$upload_file=$rs[c_teacherph];
$file="../../".$home."/photo/".$upload_file;
unlink($file);
}
if ($c_teacherph!=""){
$save_dir="../../".$home."/photo";
$isUploaded=FALSE;
$upload_file=$c_teacherph;
if(!strcmp($upload_file,"none")){
continue;
}else{
$upload_file_name=$c_teacherph_name;
$upload_file_size=$c_teacherph_size;
$upload_file_type=$c_teacherph_type;
if ( $upload_file_size >= (150*1024)){
?>
}else{
$filename=explode(".",$upload_file_name);
$extension=$filename[sizeof($filename)-1];
if(!strcmp($extension,"html")||!strcmp($extension,"htm")||!strcmp($extension,"php")||!strcmp($extension,"phtml")||!strcmp($extension,"inc")||!strcmp($extension,"txt")||!strcmp($extension,"asp"))
{
continue;
}
$dest=$save_dir."/".$upload_file_name;
if ($upload_file_name!=""){
copy($upload_file,$dest);
}
$isUploaded=TRUE;
}
}
}
$c_info = addslashes($c_info);
$c_info = ereg_replace(">",">",$c_info);
$c_info = ereg_replace("<","<",$c_info);
$sql="update c_info set c_info='$c_info',c_precepts='$c_precepts',admin='$admin',adpwd='$adpwd'";
if ($c_teacherph!=""){
$sql=$sql.",c_teacherph='$c_teacherph_name'";
}
$sql=$sql." where c_no='$c_no'";
mysql_query($sql);
include "../../dbcon.inc";
$sql="update c_group set admin='$admin',adpwd='$adpwd' where no='$c_no'";
mysql_query($sql);
?>
}
?>