<?php
include('db.php');
include('nast.php');
include('func.php');
include('shapka.php');
$time=time();
$file=mysql_escape_string($file);
$dirname=dirname($file);
$basename=basename($file);
while($file[0]=='/')
$sd=substr($file,1,strlen($file));
$result=mysql_query("SELECT * from `file` WHERE `sd`='$dirname' and `file`='$basename'");
if(
(in_array(r($file), $progf) or in_array(r($file), $imagef) or in_array(r($file), $temaf) or in_array(r($file), $musicf) or in_array(r($file),$videof) or in_array(r($file),$zipf)) and (!in_array(r($file,1), $progf) and !in_array(r($file,1), $temaf) and !in_array(r($file,1), $videof)) and !strstr($dirname,"..") and file_exists($file))
{
if(!mysql_num_rows($result))
{
mysql_query("INSERT into `file` VALUES(0,'$dirname','$basename','1','".time()."','".filectime($file)."')");}
else
{
$fileinfo=mysql_fetch_array($result);
mysql_query("UPDATE `file` SET `rat`=`rat`+1,`ldate`='$time' WHERE `id`='$fileinfo[id]'");
}
header("Location: $file");
}
else
{
print $beginpage;
include('rekl.php');
print 'Ошибка!Файла не существует<br/>';
print "<a href=\"index.php\">выбрать раздел</a><br/>";
print $endpage;
}
?>