<?php
session_start();
require_once '../config/config.php';
if(isset($_SESSION['username']))
{
@$nomi = $_FILES['immagine']['name'];
@$direcory = $_FILES['immagine']['tmp_name'];
@$file_error = $_FILES["immagine"]['error'];
$uploaddir = "../img/cover/";
@$title = $_POST["title"];
@$mex = $_POST["mex"];
@$cat = $_POST["cate"];
$user = $_SESSION['username'];
@$extension = explode(".", $nomi);
if($extension[1] == 'png' || $extension[1] == 'jpg' || $extension[1] == 'jpeg')
{
if($file_error != UPLOAD_ERR_INI_SIZE)
{
$nnome = GeneraNomi(20);
$nnome .= ".";
$nnome .= $extension[1];
move_uploaded_file($direcory, $uploaddir . $nomi);
rename($uploaddir . $nomi,$uploaddir . $nnome);
if(mysql_query("INSERT INTO `articoli` (`id`,`categoria`,`titolo`,`testo`,`cover`,`autore`,`data`) VALUES (NULL,'$cat','$title','$mex','$nnome','$user','$unix_time')"))
{
$r = mysql_fetch_row(mysql_query("SELECT id FROM articoli ORDER BY data DESC"));
header("Location:../index.php?a=".$r[0]);
}
else
echo "Errore";
}
else
echo "File troppo grande.";
}
else
echo "Estensione invalida.";
}
else
echo "<div id=\"ajax_cont_error\">Non puoi visualizzare questa pagina.</font>";
?>