isAdmin($xoopsModule->mid()))) redirect_header(XOOPS_URL."/", 3, _NOPERM); $aid = (int)$HTTP_GET_VARS['aid']; $pic_file = base64_decode($HTTP_GET_VARS['pic_file']); $dir_name = dirname($pic_file)."/"; $file_name = basename($pic_file); $sql = "SELECT pid ". "FROM ".$xoopsDB->prefix("xcgal_pictures")." ". "WHERE filepath='".addslashes($dir_name)."' AND filename='".addslashes($file_name)."' ". "LIMIT 1"; $result = $xoopsDB->query($sql); if ($xoopsDB->getRowsNum($result)) { $file_name = "images/up_dup.gif"; } elseif (add_picture($aid, $dir_name, $file_name)){ $file_name = "images/up_ok.gif"; } else { $file_name = "images/up_pb.gif"; echo $ERROR; } if(ob_get_length()){ ob_end_flush(); exit; } header('Content-type: image/gif'); echo fread(fopen($file_name, 'rb'), filesize($file_name)); ob_end_flush() ?>