Code: Select all
$result=mysql_query($sql) or die(mysql_error());Code: Select all
$sql="select * from se_fileuploads where userupload_id=".$_GET['upid'];
$tmp = mysql_query($sql);
$fileupload = mysql_fetch_object($tmp);
$sql="select * from se_users where user_id=$userid";
$temp=mysql_query($sql);
$current_rating=($rating/$count) * 25;
$voted=@mysql_fetch_assoc(@mysql_query("SELECT * FROM se_fileratings WHERE user_id='$uid ' AND userupload_id='$id' "));
if($voted){Code: Select all
readfile("./userfiles/".$name);please someone can help me to avoide these bugs