query("SELECT id FROM user WHERE name='" . $sname . "';"); $id_ar = $id_db->fetchArray(SQLITE3_NUM); $id = $id_ar[0]; if(!preg_match("/[0-9]+/", $id)){ database_error(); } for($i=0; $i<$length; $i++){ if(!empty($folder_array_unsafe[$i])){ $folder_array[$i]=SQLite3::escapeString("$folder_array_unsafe[$i]"); if($absolutpath){ if($db->exec(" INSERT INTO files (id, parent, owner, name, folder, size, share, hash) VALUES (NULL, " . $k . ", " . $id . ", '" . $folder_array[$i] . "', '" . $type . "', 0, '" . $public . "', ''); ")){ $primary_key_db = $db->query("SELECT id FROM files WHERE name='" . $folder_array[$i] . "';"); $primary_key_ar = $primary_key_db->fetchArray(SQLITE3_NUM); $primary_key = $primary_key_ar[0]; $k=$primary_key; } else { database_error(); } } else { $primary_key_db = $db->query("SELECT id FROM files WHERE name='" . $pwd . "';"); $primary_key_ar = $primary_key_db->fetchArray(SQLITE3_NUM); $primary_key = $primary_key_ar[0]; if($db->exec(" BEGIN TRANSACTION; INSERT INTO files (id, parent, owner, name, folder, size, share, hash) VALUES (NULL, " . $primary_key . ", " . $id . ", '" . $folder_array[$i] . "', '" . $type . "', 0, '" . $public . "', ''); COMMIT; ")){ $pwd='$folder_array[$i]'; } else { database_error(); } } } } header("Refresh: 0; /" . $name); } else { echo "Hallo $_SESSION[username];

Folder:

Public?

pwd:

"; echo "END"; }