Update of index2.php:
<?php
include("func.php");
$size = 0;
$files = glob('uploads/*.*');
usort($files, function($a, $b) {
return filemtime($a) < filemtime($b);
});
$idx=0;
$files = array_reverse($files, true);
if(is_dir("uploads")) {
foreach($files as $file) {
if($idx==count($files)-1) break;
$filesize = filesize($file);
$size+=$filesize;
$idx++;
}
$idx=0;
if($size>5000000) {
foreach($files as $file) {
if($idx==count($files)-1) break;
unlink($file);
$idx++;
}
}
}
$size = 0;
$files = glob('dpic/*.*');
usort($files, function($a, $b) {
return filemtime($a) < filemtime($b);
});
$idx=0;
$files = array_reverse($files, true);
if(is_dir("dpic")) {
foreach($files as $file) {
if($idx==count($files)-1) break;
$filesize = filesize($file);
$size+=$filesize;
$idx++;
}
$idx=0;
if($size>5000000) {
foreach($files as $file) {
if($idx==count($files)-1) break;
unlink($file);
$idx++;
}
}
}
$msg=new Msg();
$name1 = strip_tags($_POST['text0']);
if($name1!="") {
$name1=substr($name1,0, 646);
}
$addline=true;
$tabls=$myd->dtables;
$time=null;
$tidx=-1;
$nooutput=false;
$oput="";
$pwd1="";
$newmessagenr=1;
$newinumber=1;
if($tabls!=null) {
for($i=0; $i<count($tabls); $i++) {
$oc=$tabls[$i][0]->getNameOfClass();
if($oc=="Msg") {
$biggestnr=0;
for($j=0; $j<count($tabls[$i]); $j++) {
if($tabls[$i][$j]->messagenumber>$biggestnr) $biggestnr=$tabls[$i][$j]->messagenumber;
}
$newmessagenr=$biggestnr+1;
}
}
}
if($tabls!=null) {
for($i=0; $i<count($tabls); $i++) {
$oc=$tabls[$i][0]->getNameOfClass();
if($oc=="Inimene") {
$biggestnr=0;
for($j=0; $j<count($tabls[$i]); $j++) {
if($tabls[$i][$j]->inr>$biggestnr) $biggestnr=$tabls[$i][$j]->inr;
}
$newinumber=$biggestnr+1;
}
}
}
if($tabls!=null) {
for($i=0; $i<count($tabls); $i++) {
$oc=$tabls[$i][0]->getNameOfClass();
if ($oc=="Password") {
$pwd1=$tabls[$i][0]->content;
}
}
}
$pwdactive=0;
if($pwd1!="") {
$pwdactive=1;
if($pwd1!=$_GET['code']) exit(0);
}
$pic_uploaded=false;
$newpic1=null;
if(isset($_POST["submit"])&&$_FILES["fileToUpload"]['error']==0) {
$new_url = str_replace(' ', '', $new_url);
echo "<a class='main1' href='".$new_url."'>Avalehele</a><p></p>";
function strip($var) {
$allowed = '<font>';
return strip_tags($var, $allowed);
}
function closetags ( $html )
{
preg_match_all ( "#<([a-z]+)( .*)?(?!/)>#iU", $html, $result );
$openedtags = $result[1];
preg_match_all ( "#</([a-z]+)>#iU", $html, $result );
$closedtags = $result[1];
$len_opened = count ( $openedtags );
if( count ( $closedtags ) == $len_opened )
{
return $html;
}
$openedtags = array_reverse ( $openedtags );
for( $i = 0; $i < $len_opened; $i++ )
{
if ( !in_array ( $openedtags[$i], $closedtags ) )
{
$html .= "</" . $openedtags[$i] . ">";
}
else
{
unset ( $closedtags[array_search ( $openedtags[$i],
$closedtags)] );
}
}
return $html;
}
$ind=array();
$itidx=-1;
if($tabls!=null) {
for($i=0; $i<count($tabls); $i++) {
$oc=$tabls[$i][0]->getNameOfClass();
if ($oc=="Inimene") {
$ind=$tabls[$i];
$itidx=$i;
}
}
}
if($ind!=null) {
if(count($ind)>2499) {
echo "Topic full(2500).";
exit(0);
}
}
$iexists=false;
$currenti=null;
for($i=0; $i<count($ind); $i++) {
if($ind[$i]->name==$name1) {
$iexists=true;
$currenti=$ind[$i];
}
}
$havewritten=false;
$myname = strip_tags($_POST['myname']);
if($myname!="") {
$myname=substr($myname,0, 646);
}
if($myname!="") {
$havewritten=true;
}
if(count($ind)>0) {
if($name1!=""&&$havewritten==false&&$iexists==false) {
$curi=new Inimene();
$curi->name=$name1;
$myname=$name1;
$curi->time=$itime2;
$curi->inr=$newinumber;
$ind[]=$curi;
$tabls[$itidx]=$ind;
$myd->dtables=$tabls;
$myd->saveobjecttable("Inimene");
$currenti=$curi;
} else if($name1!=""&&$havewritten==true&&$iexists==false) {
for($i=0; $i<count($ind); $i++) {
if($ind[$i]->name==$myname) {
$currenti=$ind[$i];
}
}
$currenti->name=$name1;
$myname=$name1;
$currenti->time=$itime2;
$myd->dtables=$tabls;
$myd->saveobjecttable("Inimene");
}
else if($name1!=""&&$currenti->name==$name1&&$iexists==true) {
$currenti->time=$itime2;
$itime=$itime2;
$myd->dtables=$tabls;
$myd->saveobjecttable("Inimene");
}
} else {
if($name1!=""&&$iexists==false) {
$curi=new Inimene();
$curi->name=$name1;
$curi->time=$itime2;
$curi->inr=$newinumber;
$myname=$name1;
$ind12=array();
$ind12[]=$curi;
$tabls[]=$ind12;
$myd->dtables=$tabls;
$myd->saveobjecttables();
$currenti=$curi;
}
else if($name1!=""&&$iexists==true) {
echo "User exists.";
exit(0);
}
}
$pic_uploaded2=false;
if(isset($_POST["submit"])&&$_FILES["fileToUpload2"]['error']==0) {
$target_dir = "dpic/";
$target_file = $target_dir . basename($_FILES["fileToUpload2"]["name"]);
$uploadOk = 1;
$imageFileType = strtolower(pathinfo($target_file,PATHINFO_EXTENSION));
if (file_exists($target_file)) {
$uploadOk = 0;
}
if ($_FILES["fileToUpload2"]["size"] > 5000000) {
$uploadOk = 0;
}
if($imageFileType=="php"||!($imageFileType=="jpg"||$imageFileType=="png"||$imageFileType=="gif"||$imageFileType=="jpeg")) {
$uploadOk = 0;
}
$time1212=time();
if ($uploadOk == 0) {
} else {
if (move_uploaded_file($_FILES["fileToUpload2"]["tmp_name"], str_replace('.', $time1212.'.', $target_file))) {
chmod(str_replace('.', $time1212.'.', $target_file), 0744);
$pic_uploaded2=true;
}
}
$newpic2=null;
$tabls0=null;
if($pic_uploaded2==true) {
$tabls0=$myd->dtables;
$picstidx=-1;
if($tabls0!=null) {
for($i=0; $i<count($tabls0); $i++) {
$oc0=$tabls0[$i][0]->getNameOfClass();
if ($oc0=="Picture") {
$picstidx=$i;
}
}
if($picstidx==-1) {
$picstidx=count($tabls0);
$tabls0[]=array();
}
} else {
$tabls0=array();
$tabls0[]=array();
$picstidx=0;
}
$newpic2=new Picture();
$newpic2->name=basename(str_replace('.', $time1212.'.', $_FILES["fileToUpload2"]["name"]));
$newpic2->time=$itime2;
$tabls0[$picstidx][]=$newpic2;
$myd->dtables=$tabls0;
$myd->saveobjecttable("Picture");
$currenti->dpic=$newpic2->name;
$myd->saveobjecttable("Inimene");
}
}
$msg1=strip($_POST['text1']);
$msg1 = preg_replace('#<script(.*?)>(.*?)</script>#is', '', $msg1);
$msg12=$msg1;
if($currenti->dpic!=""||$currenti->dpic!=null) {
$msg->text=$itime2." ".$name1." <img src='dpic/".$currenti->dpic."' onerror='imgError(this);' style='width: 50px;' > : ".$msg1;
} else {
$msg->text=$itime2." ".$name1." : ".$msg1;
}
$msg->text=substr($msg->text,0, 216345);
$msg->text=closetags($msg->text);
$msg->messagenumber=$newmessagenr;
$width=450;
}
$msg->text.="<p></p><img src='uploads/".$newpic1->name."' onerror='imgError(this);' style='width: ".$width."px;' >";
$msg->messagenumber=$newmessagenr;
} else {
$msg->text.="<p></p><a class='file1' href='uploads/".$newpic1->name."'>File: ".$newpic1->name."</a>";
}
$aone[]=$msg;
$tabls[]=$aone;
$myd->dtables=$tabls;
$myd->saveobjecttable("Msg");
} else {
$ftype = strtolower(pathinfo("uploads/".$newpic1->name,PATHINFO_EXTENSION));
if($ftype=="jpg"||$ftype=="png"||$ftype=="jpeg"||$ftype=="gif") {
$imgsize = getimagesize("uploads/".$newpic1->name);
$width=$imgsize[0];
$height=$imgsize[1];
if($width>450) {
$width=450;
<input name="myname" id="myname" type="hidden" value="<?php echo $myname; ?>"/>
<p class="main2">Nimi: <input name="text0" id="text0" type="text"
style="width: 114px;" value="<?php echo $name1; ?>"> </p>
<p class="main2">Sõnum:</p>
<textarea class="text1" name="text1" id="text1" type="text">
</textarea>
<p></p>
<p class="main5">Pilt või muud tüüpi fail (kuni 5 mb'd):</p>