. */ include "inc.php"; $query="select Sessions.id, Sessions.dnldcode, Sessions.modcode, Files.id, Files.sessionid, Files.name, Files.description from Sessions,Files where (Sessions.dnldcode=\"" . addslashes($VerificationNumber) . "\" or Sessions.modcode=\"" . addslashes($VerificationNumber) . "\") and (Sessions.destemail like \"%" . addslashes($YourEmail) . "%\" or Sessions.srcemail like \"%" . addslashes($YourEmail) . "%\") and Files.sessionid=Sessions.id;"; $res = mysql_query($query,$dbh) or die("

A fatal database error occured.\n
Query: " . $query . "
\nError: (" . mysql_errno() . ") " . mysql_error()); $numfound = mysql_num_rows($res); ?> <?=$appname; ?> - File Listing "; while($row = mysql_fetch_row($res)){ //if ($row[7] != "") $realname = $row[7]; //else $realname = $row[5]; $realname = $row[5]; $fsize = filesize("$fpath/" . stripslashes($row[1]) . "/$realname"); echo ''; echo ''; echo ''; echo ''; echo ''; echo ''; echo ''; echo ''; echo ''; echo ''; echo ''; echo ''; echo ''; echo '
Filename' . stripslashes($row[5]) . '
Description' . stripslashes($row[6]) . '
Size' . round($fsize/1024/1024,2) . ' MB
'; echo '

'; } } else echo '

File not found
'; ?>