if (isset($_POST['submit_photo'])) {

		require_once INCLUDES."photo_functions_include.php";

		$error = "";

		$submit_info['photo_title'] = stripinput($_POST['photo_title']);

		$submit_info['photo_description'] = stripinput($_POST['photo_description']);

		$submit_info['album_id'] = isNum($_POST['album_id']) ? $_POST['album_id'] : "0";

		if (is_uploaded_file($_FILES['photo_pic_file']['tmp_name'])) {

			$photo_types = array(".gif",".jpg",".jpeg",".png");

			$photo_pic = $_FILES['photo_pic_file'];

			$photo_name = strtolower(substr($photo_pic['name'], 0, strrpos($photo_pic['name'], ".")));

			$photo_ext = strtolower(strrchr($photo_pic['name'],"."));

			define("SAFEMODE", @ini_get("safe_mode") ? true : false);

			$photo_dest = PHOTOS.(!SAFEMODE ? "album_".$album_id."/" : "");

			if (!preg_match("/^[-0-9A-Z_\[\]]+$/i", $photo_name)) {

				$error = 1;

			} elseif ($photo_pic['size'] > $settings['photo_max_b']){

				$error = 2;

			} elseif (!in_array($photo_ext, $photo_types)) {

				$error = 3;

			} else {

				$photo_file = image_exists($photo_dest, $photo_name.$photo_ext);

				move_uploaded_file($photo_pic['tmp_name'], $photo_dest.$photo_file);

				chmod($photo_dest.$photo_file, 0644);

				$imagefile = @getimagesize($photo_dest.$photo_file);

				if (!verify_image($photo_dest.$photo_file)) {

					$error = 3;

					unlink($photo_dest.$photo_file);

				} elseif ($imagefile[0] > $settings['photo_max_w'] || $imagefile[1] > $settings['photo_max_h']) {

					$error = 4;

					unlink($photo_dest.$photo_file);

				} else {

					$submit_info['photo_file'] = $photo_file;

					$photo_thumb1 = image_exists($photo_dest, $photo_name."_t1".$photo_ext);

					createthumbnail($imagefile[2], $photo_dest.$photo_file, $photo_dest.$photo_thumb1, $settings['thumb_w'], $settings['thumb_h']);

					if ($imagefile[0] > $settings['photo_w'] || $imagefile[1] > $settings['photo_h']) {

					$photo_thumb2 = image_exists($photo_dest, $photo_name."_t2".$photo_ext);

					createthumbnail($imagefile[2], $photo_dest.$photo_file, $photo_dest.$photo_thumb2, $settings['photo_w'], $settings['photo_h']);

					}

				}

			}

		}

		opentable($locale['570']);

		if (!$error) {

			$photo_order = dbresult(dbquery("SELECT MAX(photo_order) FROM ".$db_prefix."photos WHERE album_id='$album_id'"), 0) + 1;

			$result = dbquery("INSERT INTO ".$db_prefix."photos (album_id, photo_title, photo_description, photo_filename, photo_thumb1, photo_thumb2, photo_datestamp, photo_user, photo_views, photo_order, photo_allow_comments, photo_allow_ratings) VALUES ('".$submit_info['album_id']."', '".$submit_info['photo_title']."', '".$submit_info['photo_description']."', '".$submit_info['photo_file']."', '$photo_thumb1', '$photo_thumb2', '".time()."', '".$userdata['user_id']."', '0', '$photo_order', '1', '1')");

			echo "<center><br>\n".$locale['580']."<br><br>

<a href='submit.php?stype=p'>".$locale['581']."</a><br><br>

<a href='index.php'>".$locale['412']."</a><br><br>\n</center>\n";

		} else {

			echo "<center><br>\n".$locale['600']."<br><br>\n";

			if ($error == 1) { echo $locale['601']; }

			elseif ($error == 2) { echo sprintf($locale['602'], $settings['photo_max_b']); }

			elseif ($error == 3) { echo $locale['603']; }

			elseif ($error == 4) { echo sprintf($locale['604'], $settings['photo_max_w'], $settings['photo_max_h']); }

			echo "<br><br>\n<a href='submit.php?stype=p'>".$locale['411']."</a><br><br>\n</center>\n";

		}

		closetable();

	}