3)return; foreach($ap as $_p){ if($_p=="")continue; if(!preg_match("/^[A-z_ ]+$/i",$p,$match))break; // we only create folder with alpha chars. $P.="\\".$_p; mkdir($WEB_ROOT_PATH.$P); } } ///////////////////////////////////////////// //phpinfo(); //include("ca.php"); //header("Location:/ca.php"); //exit; //error_reporting(E_ERROR | E_WARNING | E_PARSE); strtok($_SERVER["QUERY_STRING"],";"); $query=strtok(";"); $aquery=parse_url($query); $path=$aquery["path"]; $localpath=str_replace("/","\\",$path); $fulllocal=$WEB_ROOT_PATH.$localpath; $pathinfo=pathinfo($fulllocal); $dir=$pathinfo["dirname"]; $base=$pathinfo["basename"]; $ext=$pathinfo["extension"]; if(!stristr($LIGIT_EXT,$ext)){ //if(preg_match("/[A-z \/\\]+/",$dir,$match)){ if(!file_exists($fulllocal) && $fulllocal)mymkdir($fulllocal); if(!file_exists($fulllocal."\\index.php"))copy($WEB_ROOT_PATH."\\index.php", $fulllocal."\\index.php"); // sleep(2);header("Location:$SCRIPT_NAME");exit; $adir=explode("/",$path); $Q=$adir[1]; $Q=str_replace("_","+",$Q); $Q=str_replace(" ","+",$Q); $Q=str_replace("%20","+",$Q); $HTTP_GET_VARS["Q"]=$Q; $_GET["Q"]=$Q; include($WEB_ROOT_PATH."\\ca.php"); exit; //} }else{ if(!file_exists($dir) && $dir)mymkdir($dir); if(!file_exists($fulllocal))copy($WEB_ROOT_PATH."\\index.php", $dir."\\index.php");//index.php must be in folder if(!file_exists($fulllocal))copy($WEB_ROOT_PATH."\\index.php", $fulllocal); } /* $adir=explode("\\",$dir); $Q=$adir[1]; $Q=str_replace("_","+",$Q); $Q=str_replace(" ","+",$Q); $Q=str_replace("%20","+",$Q); $HTTP_GET_VARS["Q"]=$Q; $_GET["Q"]=$Q; */ //print_r($aquery); include($WEB_ROOT_PATH."\\ca.php"); ?> */?>