Unexpected $end .... grr
Posted: Mon Feb 06, 2006 7:27 pm
Hey Ya'll
I have a file upload script here but .... it says unexpected $end cant find the issue here
Code:
Thanks
I have a file upload script here but .... it says unexpected $end cant find the issue here
Code:
Code: Select all
<?php
/************************************************************************/
/* PHP-NUKE: Web Portal System */
/* =========================== */
/* */
/* Copyright (c) 2002 by Francisco Burzi */
/* http://phpnuke.org */
/* */
/* Upload Module From http://www.YourCodes.com */
/* Mike Koenig */
/* */
/* This program is free software. You can redistribute it and/or modify */
/* it under the terms of the GNU General Public License as published by */
/* the Free Software Foundation; either version 2 of the License. */
/************************************************************************/
if (!eregi("modules.php", $_SERVER['PHP_SELF'])) {
die ("You can't access this file directly...");
}
require_once("mainfile.php");
include("header.php");
OpenTable();
//vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv
// You may change maxsize, and allowable upload file types.
//^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
//Mmaximum file size. You may increase or decrease.
$MAX_SIZE = 5000000;
//Allowable file Mime Types. Add more mime types if you want
$FILE_MIMES = array('image/jpeg','image/jpg','image/gif'
,'image/png','application/msword');
//Allowable file ext. names. you may add more extension names.
$FILE_EXTS = array('.zip','.jpg','.png','.gif', '.rar', '.mp3', '.wav' ,'.mpeg', '.avi' ,'.w3g');
//Allow file delete? no, if only allow upload only
$DELETABLE = false;
//vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv
// Do not touch the below if you are not confident.
//^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
/************************************************************
* Setup variables
************************************************************/
$site_name = $_SERVER['HTTP_HOST'];
$url_dir = "http://".$_SERVER['HTTP_HOST'].dirname($_SERVER['PHP_SELF']);
$url_this = "http://".$_SERVER['HTTP_HOST'].$_SERVER['PHP_SELF'];
$upload_dir = "files/";
$upload_url = $url_dir."/files/";
$message ="";
// Re-Direct for Catagory
if (isset($_POST['catsubmit'])){
if (isset($_POST['id'])){
$_SESSION['id']=$_POST['id'];
header("Location: modules.php?name=Upload&file=showfiles");
}else{
echo "Please select a catagory";
}
}
/************************************************************
* Create Upload Directory
************************************************************/
if (!is_dir("files")) {
if (!mkdir($upload_dir))
die ("upload_files directory doesn't exist and creation failed");
if (!chmod($upload_dir,0755))
die ("change permission to 755 failed.");
}
/************************************************************
* Process User's Request
************************************************************/
/*
if ($_REQUEST[del] && $DELETABLE) {
$resource = fopen("log.txt","a");
fwrite($resource,date("Ymd h:i:s")."DELETE - $_SERVER[REMOTE_ADDR]"."$_REQUEST[del]\n");
fclose($resource);
if (strpos($_REQUEST[del],"/.")>0); //possible hacking
else if (strpos($_REQUEST[del],$upload_dir) === false); //possible hacking
else if (substr($_REQUEST[del],0,6)==$upload_dir) {
unlink($_REQUEST[del]);
print "<script>window.location.href='$url_this?message=deleted successfully'</script>";
}
}
*/
if ($_FILES['userfile']) {
$resource = fopen("log.txt","a");
fwrite($resource,date("Ymd h:i:s")."UPLOAD - $_SERVER[REMOTE_ADDR]"
.$_FILES['userfile']['name']." "
.$_FILES['userfile']['type']."\n");
fclose($resource);
$file_type = $_FILES['userfile']['type'];
$file_name = $_FILES['userfile']['name'];
$file_ext = strtolower(substr($file_name,strrpos($file_name,".")));
//File Size Check
if ( $_FILES['userfile']['size'] > $MAX_SIZE)
$message = "The file size is over 2MB.";
//File Type/Extension Check
else if (!in_array($file_type, $FILE_MIMES)
&& !in_array($file_ext, $FILE_EXTS) )
$message = "Sorry, File Extension is not allowed to be uploaded.";
else
$message = do_upload($upload_dir, $upload_url);
echo "<b>Upload Successful!</b>";
}
else if (!$_FILES['userfile']);
else
$message = "Invalid File Specified.";
/************************************************************
* List Files
************************************************************/
/*
$handle=opendir($upload_dir);
$filelist = "";
while ($file = readdir($handle)) {
if(!is_dir($file) && !is_link($file)) {
$filelist .= "<a href='$upload_dir$file'>".$file."</a>";
if ($DELETABLE)
$filelist .= " <a href='?del=$upload_dir".urlencode($file)."' title='delete'>x</a>";
$filelist .= "<sub><small><small><font color=blue> ".date("d-m H:i", filemtime($upload_dir.$file))
."</font></small></small></sub>";
$filelist .="<br>";
}
}
*/
function do_upload($upload_dir, $upload_url) {
$desc=$_POST['desc'];
$author=$_POST['author'];
$cat=$_POST['cat'];
$file=$_FILES['userfile']['name'];
$sql=mysql_query("INSERT INTO uploads(id,filename,desc,added_by,cat,datetime) VALUES ('','$file','$desc','$author','$cat',now()");
$temp_name = $_FILES['userfile']['tmp_name'];
$file_name = $_FILES['userfile']['name'];
$file_name = str_replace("\\","",$file_name);
$file_name = str_replace("'","",$file_name);
$file_path = $upload_dir.$file_name;
//File Name Check
if ( $file_name =="") {
$message = "Invalid File Name Specified";
return $message;
}
$result = move_uploaded_file($temp_name, $file_path);
if (!chmod($file_path,0777)){
$message = "change permission to 777 failed.";
}else{
echo "Upload Completed!";
}
echo '
<center>
<br>
<b>Choose a catgory to see the videos!</b><br />
<form method="POST" action="modules.php?name=Upload&file=upload">
<b>Select:</b><select name=\'id\'><option value=\'1\'>Replays</option><option value=\'2\'>1v1</option><option value=\'3\'>2v2</option><option value=\'4\'>3v3</option><option value=\'5\'>4v4</option></select><br>
<input type=\'submit\' name=\'catsubmit\' value=\'Go\'>
<input type=\'hidden\' name=\'name\' value=\'Upload\'><input type=\'hidden\' name=\'file\' value=\'index\'></form><p>$message
<br /><br />
<form name="upload" id="upload" ENCTYPE="multipart/form-data" method="post">
Upload File <input type="file" id="userfile" name="userfile">
<b>Desciption:</b><input type="text" name="desc"><br />
<b>Added By:</b><input type="text" name="author"><br />
<b>Catagory</b><select name="id"><option value="1">Replays</option><option value="2">1v1</option><option value="3">2v2</option><option value="4">3v3</option><option value="5">4v4</option></select><br>
<input type="submit" value="Send File" name="submit"/>
<input type="hidden" name="name" value="Upload" />
<input type="hidden" name="file" value="index" />
<input type="submit" name="upload" value="Upload"><br><br>
We only allow these file-types: .jpg, .gif, .png, .zip, .rar, .mp3, .mpeg, .wav,.avi & .w3g
</form>
</center>';
CloseTable();
OpenTable();
echo "Developed By ";
echo "<a href='http://www.nuclear-nuke.com/index.php' target='_blank'>Nuclear-Nuke.Com</a>";
echo ("<br>");
echo "Mod By ";
echo "<a href='http://www.ownag3.com' target='_blank'>Ownag3.Com</a>";
echo "\n Modified By: <a href='http://www.criticalerrordesigns.com'>High_-_Tek</a>";
CloseTable();
include("footer.php");
?>Thanks