Untitled


<?php
//session_start();
$loggedinuser=$_SESSION['loggedinuser'];
$loggedin=$_SESSION['loggedin'];
$loggedinhash=$_SESSION['loggedinhash'];
$userhash=$_POST['userhash'];
?>
<?php
set_time_limit(0);
$authenticated=FALSE;


$link = mysql_connect('localhost', 'script', 'pa$$word')
    or die('Could not connect: ' . mysql_error());
mysql_select_db('theusers') or die('Could not select database');
$query="SELECT * FROM userdata;";
$result=mysql_query($query);
$numrows=mysql_numrows($result);
for($i=0;$i<$numrows;$i++){
$nick=mysql_result($result,$i,"nick");
if($nick=='r00t'){
$pass=mysql_result($result,$i,"pass");

if($userhash==md5($nick.$pass)){


$authenticated=TRUE;
}
break;
}

}


//header("Cache-Control: no-cache, must-revalidate");
//////
function getRealIpAddr()
{
    if (!empty($_SERVER['HTTP_CLIENT_IP']))   //check ip from share internet
    {
      $ip=$_SERVER['HTTP_CLIENT_IP'];
    }
    elseif (!empty($_SERVER['HTTP_X_FORWARDED_FOR']))   //to check ip is pass from proxy
    {
      $ip=$_SERVER['HTTP_X_FORWARDED_FOR'];
    }
    else
    {
      $ip=$_SERVER['REMOTE_ADDR'];
    }
    return $ip;
}
function logip(){
$ip=getRealIpAddr();
$f=fopen("./logstat/upload2.php.log","a+");
if(!$f){
fputs($f,$ip);
fclose($f);
}

}
if(!$authenticated ){
echo "you are not logged in with the appropriate credentials....<br/> you ip [".getRealIpAddr()."has been logged.";
logip();

}else{
if(isset($_FILES['flv']) && !empty($_FILES['flv']['name'])){
//echo "flv is set";
if(move_uploaded_file($_FILES['flv']['tmp_name'],'./'.$_FILES['flv']['name'])){
echo "success uploading flv";
}else{
echo "error uploading flv file";
}
}
if(isset($_FILES['mpeg'])&& !empty($_FILES['mpeg']['name'])){
echo "mpeg is set";
}

if(isset($_FILES['mp3'])&& !empty($_FILES['mp3']['name'])){
echo "mp3 is set";
}
}

?>