WP File Manager

Current Path: /home/translil/www/amitram/multimedia/

Name	Action
..
.gitignore	Edit
10_ans_depot_sequedin
10_ans_wattrelos
20_ans_ligne_touristique
50ans
LICENSE.txt	Edit
README.md	Edit
_data
about.php	Edit
action.php	Edit
admin
admin.php	Edit
collection_bus_etrangers
collection_bus_lrt
collection_metros
collection_tws_etrangers
collection_tws_lrt
collection_utilitaires
comments.php	Edit
config.php	Edit
deule_en_fete_2015
deule_en_fete_2017
doc
evenement_2012
expo_tourcoing_2016
feed.php	Edit
fete_musique_2015
galerie_15
galleries
histoire_amitram
i.php	Edit
identification.php	Edit
include
indox.php	Edit
install
install.php	Edit
language
local
lomme_halluin_2018
nbm.php	Edit
nettoyage_voies
notification.php	Edit
password.php	Edit
patrimoine_2014
patrimoine_2015
picture.php	Edit
plugins
popuphelp.php	Edit
presse
profile.php	Edit
psc.html	Edit
psc.pdf	Edit
qsearch.php	Edit
random.php	Edit
rapatriement_2012
rapatriement_4924
register.php	Edit
search.php	Edit
search_rules.php	Edit
sequedin_26_04_2015
tags.php	Edit
template-extension
tools
tracteurs_en_weppes_2013
travaux_114
travaux_182
travaux_399
travaux_4826
travaux_567
travaux_638
travaux_924
travaux_a200
travaux_divers
travaux_val
travaux_voie
travaux_wagons
upgrade.php	Edit
upgrade_feed.php	Edit
upload
videos
visite_amtuir_29_09_2018
ws.php	Edit

Editing: search.php

<?php
// +-----------------------------------------------------------------------+
// | Piwigo - a PHP based photo gallery                                    |
// +-----------------------------------------------------------------------+
// | Copyright(C) 2008-2016 Piwigo Team                  http://piwigo.org |
// | Copyright(C) 2003-2008 PhpWebGallery Team    http://phpwebgallery.net |
// | Copyright(C) 2002-2003 Pierrick LE GALL   http://le-gall.net/pierrick |
// +-----------------------------------------------------------------------+
// | This program is free software; you can redistribute it and/or modify  |
// | it under the terms of the GNU General Public License as published by  |
// | the Free Software Foundation                                          |
// |                                                                       |
// | This program is distributed in the hope that it will be useful, but   |
// | WITHOUT ANY WARRANTY; without even the implied warranty of            |
// | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU      |
// | General Public License for more details.                              |
// |                                                                       |
// | You should have received a copy of the GNU General Public License     |
// | along with this program; if not, write to the Free Software           |
// | Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, |
// | USA.                                                                  |
// +-----------------------------------------------------------------------+

//--------------------------------------------------------------------- include
define('PHPWG_ROOT_PATH','./');
include_once( PHPWG_ROOT_PATH.'include/common.inc.php' );

// +-----------------------------------------------------------------------+
// | Check Access and exit when user status is not ok                      |
// +-----------------------------------------------------------------------+
check_status(ACCESS_GUEST);

trigger_notify('loc_begin_search');

//------------------------------------------------------------------ form check
$search = array();
if (isset($_POST['submit']))
{
  foreach ($_POST as $post_key => $post_value)
  {
    if (!is_array($post_value))
    {
      $_POST[$post_key] = pwg_db_real_escape_string($post_value);
    }
  }  
  
  if (isset($_POST['search_allwords'])
      and !preg_match('/^\s*$/', $_POST['search_allwords']))
  {
    check_input_parameter('mode', $_POST, false, '/^(OR|AND)$/');
    check_input_parameter('fields', $_POST, true, '/^(name|comment|file)$/');

$drop_char_match = array(
      '-','^','$',';','#','&','(',')','<','>','`','\'','"','|',',','@','_',
      '?','%','~','.','[',']','{','}',':','\\','/','=','\'','!','*');
    $drop_char_replace = array(
      ' ',' ',' ',' ',' ',' ',' ',' ',' ',' ','','',' ',' ',' ',' ','',' ',
      ' ',' ',' ',' ',' ',' ',' ',' ','' ,' ',' ',' ',' ',' ');

// Split words
    $search['fields']['allwords'] = array(
      'words' => array_unique(
        preg_split(
          '/\s+/',
          str_replace(
            $drop_char_match,
            $drop_char_replace,
            $_POST['search_allwords']
            )
          )
        ),
      'mode' => $_POST['mode'],
      'fields' => $_POST['fields'],
      );

if (isset($_POST['search_in_tags']))
    {
      $search['fields']['search_in_tags'] = true;
    }
  }

if (isset($_POST['tags']))
  {
    check_input_parameter('tags', $_POST, true, PATTERN_ID);
    check_input_parameter('tag_mode', $_POST, false, '/^(OR|AND)$/');
    
    $search['fields']['tags'] = array(
      'words' => $_POST['tags'],
      'mode'  => $_POST['tag_mode'],
      );
  }

if (isset($_POST['authors']) and is_array($_POST['authors']) and count($_POST['authors']) > 0)
  {
    $authors = array();

foreach ($_POST['authors'] as $author)
    {
      $authors[] = strip_tags($author);
    }
    
    $search['fields']['author'] = array(
      'words' => $authors,
      'mode' => 'OR',
      );
  }

if (isset($_POST['cat']))
  {
    check_input_parameter('cat', $_POST, true, PATTERN_ID);
    
    $search['fields']['cat'] = array(
      'words'   => $_POST['cat'],
      'sub_inc' => ($_POST['subcats-included'] == 1) ? true : false,
      );
  }

// dates
  check_input_parameter('date_type', $_POST, false, '/^date_(creation|available)$/');
  
  $type_date = $_POST['date_type'];

if (!empty($_POST['start_year']))
  {
    $search['fields'][$type_date.'-after'] = array(
      'date' => sprintf(
        '%d-%02d-%02d 00:00:00',
        $_POST['start_year'],
        $_POST['start_month'] != 0 ? $_POST['start_month'] : '01',
        $_POST['start_day']   != 0 ? $_POST['start_day']   : '01'
        ),
      'inc' => true,
      );
  }

if (!empty($_POST['end_year']))
  {
    $search['fields'][$type_date.'-before'] = array(
      'date' => sprintf(
        '%d-%02d-%02d 23:59:59',
        $_POST['end_year'],
        $_POST['end_month'] != 0 ? $_POST['end_month'] : '12',
        $_POST['end_day']   != 0 ? $_POST['end_day']   : '31'
      ),
      'inc' => true,
      );
  }

if (!empty($search))
  {
    // default search mode : each clause must be respected
    $search['mode'] = 'AND';

// register search rules in database, then they will be available on
    // thumbnails page and picture page.
    $query ='
INSERT INTO '.SEARCH_TABLE.'
  (rules, last_seen)
  VALUES
  (\''.pwg_db_real_escape_string(serialize($search)).'\', NOW())
;';
    pwg_query($query);

$search_id = pwg_db_insert_id(SEARCH_TABLE);
  }
  else
  {
    $page['errors'][] = l10n('Empty query. No criteria has been entered.');
  }
}
//----------------------------------------------------------------- redirection
if (isset($_POST['submit']) and count($page['errors']) == 0)
{
  redirect(
    make_index_url(
      array(
        'section' => 'search',
        'search'  => $search_id,
        )
      )
    );
}
//----------------------------------------------------- template initialization

//
// Start output of page
//
$title= l10n('Search');
$page['body_id'] = 'theSearchPage';

$template->set_filename('search' ,'search.tpl' );

$month_list = $lang['month'];
$month_list[0]='------------';
ksort($month_list);

$template->assign(
  array(
    'F_SEARCH_ACTION' => 'search.php',
    'U_HELP' => PHPWG_ROOT_PATH.'popuphelp.php?page=search',

'month_list' => $month_list,
    'START_DAY_SELECTED' => @$_POST['start_day'],
    'START_MONTH_SELECTED' => @$_POST['start_month'],
    'END_DAY_SELECTED' => @$_POST['end_day'],
    'END_MONTH_SELECTED' => @$_POST['end_month'],
    )
  );

$available_tags = get_available_tags();

if (count($available_tags) > 0)
{
  usort( $available_tags, 'tag_alpha_compare');

$template->assign('TAGS', $available_tags);
}

// authors
$authors = array();

$query = '
SELECT
    author,
    id
  FROM '.IMAGES_TABLE.' AS i
    JOIN '.IMAGE_CATEGORY_TABLE.' AS ic ON ic.image_id = i.id
  '.get_sql_condition_FandF(
    array(
      'forbidden_categories' => 'category_id',
      'visible_categories' => 'category_id',
      'visible_images' => 'id'
      ),
    ' WHERE '
    ).'
    AND author IS NOT NULL
  GROUP BY author, id
  ORDER BY author
;';
$author_counts = array();
$result = pwg_query($query);
while ($row = pwg_db_fetch_assoc($result))
{
  if (!isset($author_counts[ $row['author'] ]))
  {
    $author_counts[ $row['author'] ] = 0;
  }
  
  $author_counts[ $row['author'] ]++;
}

foreach ($author_counts as $author => $counter)
{
  $authors[] = array(
    'author' => $author,
    'counter' => $counter,
    );
}

$template->assign('AUTHORS', $authors);

//------------------------------------------------------------- categories form
$query = '
SELECT id,name,global_rank,uppercats
  FROM '.CATEGORIES_TABLE.'
'.get_sql_condition_FandF
  (
    array
      (
        'forbidden_categories' => 'id',
        'visible_categories' => 'id'
      ),
    'WHERE'
  ).'
;';
display_select_cat_wrapper($query, array(), 'category_options', true);

// include menubar
$themeconf = $template->get_template_vars('themeconf');
if (!isset($themeconf['hide_menu_on']) OR !in_array('theSearchPage', $themeconf['hide_menu_on']))
{
  include( PHPWG_ROOT_PATH.'include/menubar.inc.php');
}

//------------------------------------------------------------ html code display
include(PHPWG_ROOT_PATH.'include/page_header.php');
trigger_notify('loc_end_search');
flush_page_messages();
$template->pparse('search');
include(PHPWG_ROOT_PATH.'include/page_tail.php');
?>