Ich habe mal die Dateien durchforstet und diese gefunden:
addpic.php
<?php
/*************************
Coppermine Photo Gallery
************************
Copyright (c) 2003-2009 Coppermine Dev Team
v1.1 originally written by Gregory DEMAR
This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License version 3
as published by the Free Software Foundation.
********************************************
Coppermine version: 1.4.25
$HeadURL: https://coppermine.svn.sourceforge.net/svnroot/coppermine/trunk/cpg1.4.x/addpic.php $
$Revision: 5997 $
$Author: gaugau $
$Date: 2009-05-26 08:43:24 +0200 (Di, 26 Mai 2009) $
**********************************************/
define('IN_COPPERMINE', true);
define('ADDPIC_PHP', true);
require('include/init.inc.php');
require('include/picmgmt.inc.php');
if (!GALLERY_ADMIN_MODE) die('Access denied');
$aid = (int)$_GET['aid'];
$pic_file = base64_decode($_GET['pic_file']);
$dir_name = dirname($pic_file) . '/';
$file_name = basename($pic_file);
# Create the holder $picture_name by translating the file name.
# Translate any forbidden character into an underscore.
$sane_name = replace_forbidden($file_name);
$source = './'.$CONFIG['fullpath'].$dir_name.$file_name;
rename($source, './' . $CONFIG['fullpath'] . $dir_name . $sane_name);
$sql = "SELECT pid FROM {$CONFIG['TABLE_PICTURES']} WHERE filepath='" . addslashes($dir_name) . "' AND filename='" . addslashes($file_name) . "' LIMIT 1";
$result = cpg_db_query($sql);
if (mysql_num_rows($result)) {
$file_name = 'images/up_dup.gif';
} elseif (add_picture($aid, $dir_name, $sane_name)) {
$file_name = 'images/up_ok.gif';
} else {
$file_name = 'images/up_pb.gif';
echo $ERROR;
}
if (ob_get_length()) {
ob_end_flush();
exit;
}
header('Content-type: image/gif');
echo fread(fopen($file_name, 'rb'), filesize($file_name));
ob_end_flush()
?>
Und zwar wird z.B. dieses gif nicht angezeigt : up_ok.gif
Obwohl es im images Ordner vorhanden ist.