Vergleich inc/functions.php - 1.4.3 - 1.4.12

Keine Änderungen Hinzugefügt Modifiziert Entfernt
Zeile 1	Zeile 1
<?php /** * MyBB 1.4	<?php /** * MyBB 1.4
* Copyright � 2008 MyBB Group, All Rights Reserved	* Copyright © 2008 MyBB Group, All Rights Reserved
* * Website: http://www.mybboard.net * License: http://www.mybboard.net/about/license *	* * Website: http://www.mybboard.net * License: http://www.mybboard.net/about/license *
* $Id: functions.php 4182 2008-09-07 18:05:30Z Tikitiki $	* $Id: functions.php 4868 2010-04-11 05:15:23Z RyanGordon $
/ /*	/ /*
Zeile 154	Zeile 154
// If our DB has been deconstructed already (bad PHP 5.2.0), reconstruct if(!is_object($db)) {	// If our DB has been deconstructed already (bad PHP 5.2.0), reconstruct if(!is_object($db)) {
if(!isset($config))	if(!isset($config) \|\| empty($config['database']['type']))
{ require MYBB_ROOT."inc/config.php"; }	{ require MYBB_ROOT."inc/config.php"; }
Zeile 228	Zeile 228
/** * Sends a specified amount of messages from the mail queue *	/** * Sends a specified amount of messages from the mail queue *
* @param int The number of messages to send (Defaults to 20)	* @param int The number of messages to send (Defaults to 10)
*/ function send_mail_queue($count=10) {	*/ function send_mail_queue($count=10) {
Zeile 409	Zeile 409
* @param string The from address of the email, if blank, the board name will be used. * @param string The chracter set being used to send this email. * @param boolean Do we wish to keep the connection to the mail server alive to send more than one message (SMTP only)	* @param string The from address of the email, if blank, the board name will be used. * @param string The chracter set being used to send this email. * @param boolean Do we wish to keep the connection to the mail server alive to send more than one message (SMTP only)
	* @param string The format of the email to be sent (text or html). text is default * @param string The text message of the email if being sent in html format, for email clients that don't support html * @param string The email address to return to. Defaults to admin return email address.
*/	*/
function my_mail($to, $subject, $message, $from="", $charset="", $headers="", $keep_alive=false, $format="text", $message_text="")	function my_mail($to, $subject, $message, $from="", $charset="", $headers="", $keep_alive=false, $format="text", $message_text="", $return_email="")
{ global $mybb; static $mail;	{ global $mybb; static $mail;
Zeile 451	Zeile 454
} // Build and send	} // Build and send
$mail->build_message($to, $subject, $message, $from, $charset, $headers, $format, $message_text);	$mail->build_message($to, $subject, $message, $from, $charset, $headers, $format, $message_text, $return_email);
return $mail->send(); }	return $mail->send(); }
Zeile 470	Zeile 473
// Guests get a special string else {	// Guests get a special string else {
return md5($mybb->config['database']['hostname'].$mybb->config['database']['username'].md5($mybb->config['database']['password']));	return md5($mybb->settings['bburl'].$mybb->config['database']['username'].$mybb->settings['internal']['encryption_key']);
} }	} }
Zeile 491	Zeile 494
} else {	} else {
error($lang->invalid_post_code);	if(defined("IN_ADMINCP")) { return false; } else { error($lang->invalid_post_code); }
} } else	} } else
Zeile 625	Zeile 635
/** * Produce a friendly error message page	/** * Produce a friendly error message page
*	*
* @param string The error message to be shown * @param string The title of the message shown in the title of the page and the error table */	* @param string The error message to be shown * @param string The title of the message shown in the title of the page and the error table */
Zeile 637	Zeile 647
if(!$error) { $error = $lang->unknown_error;	if(!$error) { $error = $lang->unknown_error;
} // AJAX error message? if($mybb->input['ajax']) { // Send our headers. @header("Content-type: text/html; charset={$lang->settings['charset']}"); echo "<error>{$error}</error>\n"; exit; } if(!$title) {	} // AJAX error message? if($mybb->input['ajax']) { // Send our headers. @header("Content-type: text/html; charset={$lang->settings['charset']}"); echo "<error>{$error}</error>\n"; exit; } if(!$title) {
$title = $mybb->settings['bbname']; }	$title = $mybb->settings['bbname']; }
Zeile 682	Zeile 692
if(!is_array($errors)) { $errors = array($errors);	if(!is_array($errors)) { $errors = array($errors);
}	}
// AJAX error message? if($mybb->input['ajax'])	// AJAX error message? if($mybb->input['ajax'])
Zeile 691	Zeile 701
// Send our headers. @header("Content-type: text/html; charset={$lang->settings['charset']}"); echo "<error>{$error}</error>\n";	// Send our headers. @header("Content-type: text/html; charset={$lang->settings['charset']}"); echo "<error>{$error}</error>\n";
exit; }	exit; }
foreach($errors as $error) {	foreach($errors as $error) {
Zeile 743	Zeile 753
error($errorpage); }	error($errorpage); }

/** * Redirect the user to a given URL with a given message *	/** * Redirect the user to a given URL with a given message *
Zeile 759	Zeile 769
$plugins->run_hooks_by_ref("redirect", $redirect_args); if($mybb->input['ajax'])	$plugins->run_hooks_by_ref("redirect", $redirect_args); if($mybb->input['ajax'])
{	{
// Send our headers. @header("Content-type: text/html; charset={$lang->settings['charset']}"); echo "<script type=\"text/javascript\">\n";	// Send our headers. @header("Content-type: text/html; charset={$lang->settings['charset']}"); echo "<script type=\"text/javascript\">\n";
Zeile 767	Zeile 777
{ echo 'alert("'.addslashes($message).'");'; }	{ echo 'alert("'.addslashes($message).'");'; }
$url = str_replace("#", "&#", $url);	$url = str_replace("#", "&#", $url);
$url = htmlspecialchars_decode($url); $url = str_replace(array("\n","\r",";"), "", $url); echo 'window.location = "'.addslashes($url).'";'."\n";	$url = htmlspecialchars_decode($url); $url = str_replace(array("\n","\r",";"), "", $url); echo 'window.location = "'.addslashes($url).'";'."\n";
Zeile 799	Zeile 809
} else {	} else {
$url = str_replace("#", "&#", $url);
$url = htmlspecialchars_decode($url); $url = str_replace(array("\n","\r",";"), "", $url);	$url = htmlspecialchars_decode($url); $url = str_replace(array("\n","\r",";"), "", $url);
Zeile 809	Zeile 818
exit; }	exit; }

/** * Generate a listing of page - pagination *	/** * Generate a listing of page - pagination *
Zeile 826	Zeile 835
if($count <= $perpage) { return;	if($count <= $perpage) { return;
}	}
$url = str_replace("&", "&", $url); $url = htmlspecialchars_uni($url);	$url = str_replace("&", "&", $url); $url = htmlspecialchars_uni($url);
Zeile 860	Zeile 869
$to = $pages; $from = $pages-$mybb->settings['maxmultipagelinks']+1; if($from <= 0)	$to = $pages; $from = $pages-$mybb->settings['maxmultipagelinks']+1; if($from <= 0)
{	{
$from = 1; } }	$from = 1; } }
Zeile 868	Zeile 877
if($to == 0) { $to = $pages;	if($to == 0) { $to = $pages;
}	}
if($from > 1) {	if($from > 1) {
Zeile 877	Zeile 886
} for($i = $from; $i <= $to; ++$i)	} for($i = $from; $i <= $to; ++$i)
{	{
$page_url = fetch_page_url($url, $i); if($page == $i) {	$page_url = fetch_page_url($url, $i); if($page == $i) {
Zeile 893	Zeile 902
{ $page_url = fetch_page_url($url, $pages); eval("\$end = \"".$templates->get("multipage_end")."\";");	{ $page_url = fetch_page_url($url, $pages); eval("\$end = \"".$templates->get("multipage_end")."\";");
}	}
if($page < $pages) {	if($page < $pages) {
Zeile 990	Zeile 999
function usergroup_permissions($gid=0) { global $cache, $groupscache, $grouppermignore, $groupzerogreater;	function usergroup_permissions($gid=0) { global $cache, $groupscache, $grouppermignore, $groupzerogreater;

if(!is_array($groupscache)) { $groupscache = $cache->read("usergroups");	if(!is_array($groupscache)) { $groupscache = $cache->read("usergroups");
}	}
$groups = explode(",", $gid);	$groups = explode(",", $gid);

if(count($groups) == 1) {	if(count($groups) == 1) {
Zeile 1010	Zeile 1018
{ continue; }	{ continue; }

foreach($groupscache[$gid] as $perm => $access) { if(!in_array($perm, $grouppermignore))	foreach($groupscache[$gid] as $perm => $access) { if(!in_array($perm, $grouppermignore))
Zeile 1024	Zeile 1032
$permbit = ""; }	$permbit = ""; }
if(in_array($perm, $groupzerogreater))	// 0 represents unlimited for numerical group permissions (i.e. private message limit) so take that into account. if(in_array($perm, $groupzerogreater) && ($access == 0 \|\| $permbit === 0))
{	{
if($access == 0) { $usergroup[$perm] = 0; continue; }	$usergroup[$perm] = 0; continue;
} if($access > $permbit \|\| ($access == "yes" && $permbit == "no") \|\| !$permbit) // Keep yes/no for compatibility?	} if($access > $permbit \|\| ($access == "yes" && $permbit == "no") \|\| !$permbit) // Keep yes/no for compatibility?
Zeile 1091	Zeile 1097
{ if($uid != 0 && $uid != $mybb->user['uid']) {	{ if($uid != 0 && $uid != $mybb->user['uid']) {
if($usercache[$uid])	if(!$usercache[$uid])
{ $query = $db->simple_select("users", "*", "uid='$uid'"); $usercache[$uid] = $db->fetch_array($query);	{ $query = $db->simple_select("users", "*", "uid='$uid'"); $usercache[$uid] = $db->fetch_array($query);
Zeile 1261	Zeile 1267
$password = $forum_cache[$fid]['password']; if($password) {	$password = $forum_cache[$fid]['password']; if($password) {
if($mybb->input['pwverify'])	if($mybb->input['pwverify'] && $pid == 0)
{ if($password == $mybb->input['pwverify']) {	{ if($password == $mybb->input['pwverify']) {
Zeile 1293	Zeile 1299
if($showform) {	if($showform) {
$_SERVER['REQUEST_URI'] = htmlspecialchars_uni($_SERVER['REQUEST_URI']); eval("\$pwform = \"".$templates->get("forumdisplay_password")."\";"); output_page($pwform);	if($pid) { header("Location: ".$mybb->settings['bburl']."/".get_forum_link($fid)); } else { $_SERVER['REQUEST_URI'] = htmlspecialchars_uni($_SERVER['REQUEST_URI']); eval("\$pwform = \"".$templates->get("forumdisplay_password")."\";"); output_page($pwform); }
exit; } }	exit; } }
Zeile 1396	Zeile 1409
else { $modperms = get_moderator_permissions($fid, $uid);	else { $modperms = get_moderator_permissions($fid, $uid);

if(!$action && $modperms) { return true;	if(!$action && $modperms) { return true;
Zeile 1496	Zeile 1509
else { $expires = TIME_NOW + (606024*365); // Make the cookie expire in a years time	else { $expires = TIME_NOW + (606024*365); // Make the cookie expire in a years time
}	}
} else {	} else {
Zeile 1509	Zeile 1522
// Versions of PHP prior to 5.2 do not support HttpOnly cookies and IE is buggy when specifying a blank domain so set the cookie manually $cookie = "Set-Cookie: {$mybb->settings['cookieprefix']}{$name}=".urlencode($value);	// Versions of PHP prior to 5.2 do not support HttpOnly cookies and IE is buggy when specifying a blank domain so set the cookie manually $cookie = "Set-Cookie: {$mybb->settings['cookieprefix']}{$name}=".urlencode($value);

if($expires > 0) { $cookie .= "; expires=".@gmdate('D, d-M-Y H:i:s \\G\\M\\T', $expires);	if($expires > 0) { $cookie .= "; expires=".@gmdate('D, d-M-Y H:i:s \\G\\M\\T', $expires);
Zeile 1521	Zeile 1534
} if(!empty($mybb->settings['cookiedomain']))	} if(!empty($mybb->settings['cookiedomain']))
{	{
$cookie .= "; domain={$mybb->settings['cookiedomain']}"; }	$cookie .= "; domain={$mybb->settings['cookiedomain']}"; }
Zeile 1546	Zeile 1559
$expires = -3600; my_setcookie($name, "", $expires);	$expires = -3600; my_setcookie($name, "", $expires);

unset($mybb->cookies[$name]); } /** * Get the contents from a serialised cookie array.	unset($mybb->cookies[$name]); } /** * Get the contents from a serialised cookie array.
* * @param string The cookie identifier.	* * @param string The cookie identifier.
* @param int The cookie content id. * @return array\|boolean The cookie id's content array or false when non-existent. */ function my_get_array_cookie($name, $id)	* @param int The cookie content id. * @return array\|boolean The cookie id's content array or false when non-existent. */ function my_get_array_cookie($name, $id)
{ global $mybb;	{ global $mybb;
if(!isset($mybb->cookies['mybb'][$name])) { return false;	if(!isset($mybb->cookies['mybb'][$name])) { return false;
}	}
$cookie = unserialize($mybb->cookies['mybb'][$name]); if(isset($cookie[$id])) { return $cookie[$id];	$cookie = unserialize($mybb->cookies['mybb'][$name]); if(isset($cookie[$id])) { return $cookie[$id];
}	}
else { return 0; }	else { return 0; }
} /**	} /**
* Set a serialised cookie array. * * @param string The cookie identifier.	* Set a serialised cookie array. * * @param string The cookie identifier.
Zeile 1592	Zeile 1605
$cookie = $mybb->cookies['mybb']; $newcookie = unserialize($cookie[$name]); $newcookie[$id] = $value;	$cookie = $mybb->cookies['mybb']; $newcookie = unserialize($cookie[$name]); $newcookie[$id] = $value;
$newcookie = addslashes(serialize($newcookie)); my_setcookie("mybb[$name]", $newcookie);	$newcookie = serialize($newcookie); my_setcookie("mybb[$name]", addslashes($newcookie)); // Make sure our current viarables are up-to-date as well $mybb->cookies['mybb'][$name] = $newcookie;
} /** * Returns the serverload of the system.	} /** * Returns the serverload of the system.
*	*
* @return int The serverload of the system. */ function get_server_load() { global $lang;	* @return int The serverload of the system. */ function get_server_load() { global $lang;

$serverload = array(); // DIRECTORY_SEPARATOR checks if running windows	$serverload = array(); // DIRECTORY_SEPARATOR checks if running windows
Zeile 1615	Zeile 1631
$serverload = explode(" ", $load); $serverload[0] = round($serverload[0], 4); }	$serverload = explode(" ", $load); $serverload[0] = round($serverload[0], 4); }
if(!$serverload)	if(!is_numeric($serverload[0]))
{ if(@ini_get('safe_mode') == 'On') {	{ if(@ini_get('safe_mode') == 'On') {
Zeile 1624	Zeile 1640
// Suhosin likes to throw a warning if exec is disabled then die - weird if($func_blacklist = @ini_get('suhosin.executor.func.blacklist'))	// Suhosin likes to throw a warning if exec is disabled then die - weird if($func_blacklist = @ini_get('suhosin.executor.func.blacklist'))
{ if(strpos(",".$func_blacklist.",", 'exec') !== false) { return $lang->unknown; } }	{ if(strpos(",".$func_blacklist.",", 'exec') !== false) { return $lang->unknown; } }
// PHP disabled functions? if($func_blacklist = @ini_get('disable_functions')) {	// PHP disabled functions? if($func_blacklist = @ini_get('disable_functions')) {
Zeile 1640	Zeile 1656
} $load = @exec("uptime");	} $load = @exec("uptime");
$load = split("load averages?: ", $load);	$load = explode("load average: ", $load);
$serverload = explode(",", $load[1]); if(!is_array($serverload)) {	$serverload = explode(",", $load[1]); if(!is_array($serverload)) {
Zeile 1649	Zeile 1665
} } else	} } else
{ return $lang->unknown;	{ return $lang->unknown;
}	}

$returnload = trim($serverload[0]); return $returnload; }	$returnload = trim($serverload[0]); return $returnload; }

/** * Updates the forum statistics with specific values (or addition/subtraction of the previous value) *	/** * Updates the forum statistics with specific values (or addition/subtraction of the previous value) *
Zeile 1699	Zeile 1715
$lastmember = $db->fetch_array($query); $new_stats['lastuid'] = $lastmember['uid']; $new_stats['lastusername'] = $lastmember['username'];	$lastmember = $db->fetch_array($query); $new_stats['lastuid'] = $lastmember['uid']; $new_stats['lastusername'] = $lastmember['username'];
}	}
if(is_array($stats)) { $stats = array_merge($stats, $new_stats);	if(is_array($stats)) { $stats = array_merge($stats, $new_stats);
Zeile 1775	Zeile 1791
{ $threads_diff = $update_query['threads'] - $forum['threads']; if($threads_diff > -1)	{ $threads_diff = $update_query['threads'] - $forum['threads']; if($threads_diff > -1)
{	{
$new_stats['numthreads'] = "+{$threads_diff}";	$new_stats['numthreads'] = "+{$threads_diff}";
}	}
else { $new_stats['numthreads'] = "{$threads_diff}";	else { $new_stats['numthreads'] = "{$threads_diff}";
} }	} }
if(array_key_exists('unapprovedthreads', $update_query)) { $unapprovedthreads_diff = $update_query['unapprovedthreads'] - $forum['unapprovedthreads']; if($unapprovedthreads_diff > -1)	if(array_key_exists('unapprovedthreads', $update_query)) { $unapprovedthreads_diff = $update_query['unapprovedthreads'] - $forum['unapprovedthreads']; if($unapprovedthreads_diff > -1)
{	{
$new_stats['numunapprovedthreads'] = "+{$unapprovedthreads_diff}";	$new_stats['numunapprovedthreads'] = "+{$unapprovedthreads_diff}";
}	}
else { $new_stats['numunapprovedthreads'] = "{$unapprovedthreads_diff}";	else { $new_stats['numunapprovedthreads'] = "{$unapprovedthreads_diff}";
} }	} }
if(array_key_exists('posts', $update_query)) { $posts_diff = $update_query['posts'] - $forum['posts']; if($posts_diff > -1)	if(array_key_exists('posts', $update_query)) { $posts_diff = $update_query['posts'] - $forum['posts']; if($posts_diff > -1)
{	{
$new_stats['numposts'] = "+{$posts_diff}"; } else { $new_stats['numposts'] = "{$posts_diff}";	$new_stats['numposts'] = "+{$posts_diff}"; } else { $new_stats['numposts'] = "{$posts_diff}";
}	}
} if(array_key_exists('unapprovedposts', $update_query)) { $unapprovedposts_diff = $update_query['unapprovedposts'] - $forum['unapprovedposts']; if($unapprovedposts_diff > -1)	} if(array_key_exists('unapprovedposts', $update_query)) { $unapprovedposts_diff = $update_query['unapprovedposts'] - $forum['unapprovedposts']; if($unapprovedposts_diff > -1)
{	{
$new_stats['numunapprovedposts'] = "+{$unapprovedposts_diff}"; } else	$new_stats['numunapprovedposts'] = "+{$unapprovedposts_diff}"; } else
Zeile 1827	Zeile 1843
// Update last post info update_forum_lastpost($fid);	// Update last post info update_forum_lastpost($fid);
	$cache->update_forums();
} /**	} /**
Zeile 1897	Zeile 1915
} } }	} } }
	$db->free_result($query);
// Only update if we're actually doing something if(count($update_query) > 0) { $db->update_query("threads", $update_query, "tid='".intval($tid)."'"); }	// Only update if we're actually doing something if(count($update_query) > 0) { $db->update_query("threads", $update_query, "tid='".intval($tid)."'"); }
	unset($update_query, $thread);
update_thread_data($tid); }	update_thread_data($tid); }
Zeile 1924	Zeile 1946
LIMIT 1" ); $lastpost = $db->fetch_array($query);	LIMIT 1" ); $lastpost = $db->fetch_array($query);
	$db->free_result($query);
$query = $db->query(" SELECT u.uid, u.username, p.username AS postusername, p.dateline FROM ".TABLE_PREFIX."posts p	$query = $db->query(" SELECT u.uid, u.username, p.username AS postusername, p.dateline FROM ".TABLE_PREFIX."posts p
Zeile 1934	Zeile 1958
LIMIT 1 "); $firstpost = $db->fetch_array($query);	LIMIT 1 "); $firstpost = $db->fetch_array($query);
	$db->free_result($query);
if(!$firstpost['username']) {	if(!$firstpost['username']) {
Zeile 1950	Zeile 1976
$lastpost['username'] = $firstpost['username']; $lastpost['uid'] = $firstpost['uid']; $lastpost['dateline'] = $firstpost['dateline'];	$lastpost['username'] = $firstpost['username']; $lastpost['uid'] = $firstpost['uid']; $lastpost['dateline'] = $firstpost['dateline'];
}	}
$lastpost['username'] = $db->escape_string($lastpost['username']); $firstpost['username'] = $db->escape_string($firstpost['username']);	$lastpost['username'] = $db->escape_string($lastpost['username']); $firstpost['username'] = $db->escape_string($firstpost['username']);
Zeile 1958	Zeile 1984
$update_array = array( 'username' => $firstpost['username'], 'uid' => intval($firstpost['uid']),	$update_array = array( 'username' => $firstpost['username'], 'uid' => intval($firstpost['uid']),
	'dateline' => intval($firstpost['dateline']),
'lastpost' => intval($lastpost['dateline']), 'lastposter' => $lastpost['username'], 'lastposteruid' => intval($lastpost['uid']), ); $db->update_query("threads", $update_array, "tid='{$tid}'");	'lastpost' => intval($lastpost['dateline']), 'lastposter' => $lastpost['username'], 'lastposteruid' => intval($lastpost['uid']), ); $db->update_query("threads", $update_array, "tid='{$tid}'");
	unset($firstpost, $lastpost, $update_array);
} function update_forum_count($fid)	} function update_forum_count($fid)
Zeile 1992	Zeile 2021
require_once MYBB_ROOT."inc/class_moderation.php"; $moderation = new Moderation; }	require_once MYBB_ROOT."inc/class_moderation.php"; $moderation = new Moderation; }

return $moderation->delete_thread($tid); }	return $moderation->delete_thread($tid); }
Zeile 2000	Zeile 2029
* Deletes a post from the database * * @param int The thread ID	* Deletes a post from the database * * @param int The thread ID
*/	*/
function delete_post($pid, $tid="") { global $moderation;	function delete_post($pid, $tid="") { global $moderation;

if(!is_object($moderation)) { require_once MYBB_ROOT."inc/class_moderation.php"; $moderation = new Moderation;	if(!is_object($moderation)) { require_once MYBB_ROOT."inc/class_moderation.php"; $moderation = new Moderation;
}	}
return $moderation->delete_post($pid); }	return $moderation->delete_post($pid); }
Zeile 2022	Zeile 2051
* @param int If we need to add select boxes to this cal or not * @param int The current depth of forums we're at * @param int Whether or not to show extra items such as User CP, Forum home	* @param int If we need to add select boxes to this cal or not * @param int The current depth of forums we're at * @param int Whether or not to show extra items such as User CP, Forum home
	* @param boolean Ignore the showinjump setting and show all forums (for moderation pages)
* @param array Array of permissions * @param string The name of the forum jump * @return string Forum jump items */	* @param array Array of permissions * @param string The name of the forum jump * @return string Forum jump items */
function build_forum_jump($pid="0", $selitem="", $addselect="1", $depth="", $showextras="1", $permissions="", $name="fid")	function build_forum_jump($pid="0", $selitem="", $addselect="1", $depth="", $showextras="1", $showall=false, $permissions="", $name="fid")
{ global $forum_cache, $jumpfcache, $permissioncache, $mybb, $selecteddone, $forumjump, $forumjumpbits, $gobutton, $theme, $templates, $lang;	{ global $forum_cache, $jumpfcache, $permissioncache, $mybb, $selecteddone, $forumjump, $forumjumpbits, $gobutton, $theme, $templates, $lang;
Zeile 2066	Zeile 2096
{ $perms = $permissioncache[$forum['fid']];	{ $perms = $permissioncache[$forum['fid']];
if($forum['fid'] != "0" && ($perms['canview'] != 0 \|\| $mybb->settings['hideprivateforums'] == 0) && $forum['linkto'] == '' && $forum['showinjump'] != 0)	if($forum['fid'] != "0" && ($perms['canview'] != 0 \|\| $mybb->settings['hideprivateforums'] == 0) && $forum['linkto'] == '' && ($forum['showinjump'] != 0 \|\| $showall == true))
{ $optionselected = "";	{ $optionselected = "";
Zeile 2077	Zeile 2107
} $forum['name'] = htmlspecialchars_uni(strip_tags($forum['name']));	} $forum['name'] = htmlspecialchars_uni(strip_tags($forum['name']));

eval("\$forumjumpbits .= \"".$templates->get("forumjump_bit")."\";"); if($forum_cache[$forum['fid']]) { $newdepth = $depth."--";	eval("\$forumjumpbits .= \"".$templates->get("forumjump_bit")."\";"); if($forum_cache[$forum['fid']]) { $newdepth = $depth."--";
$forumjumpbits .= build_forum_jump($forum['fid'], $selitem, 0, $newdepth, $showextras);	$forumjumpbits .= build_forum_jump($forum['fid'], $selitem, 0, $newdepth, $showextras, $showall);
} } }	} } }
Zeile 2141	Zeile 2171
for($i = 1; $i <= $length; ++$i) {	for($i = 1; $i <= $length; ++$i) {
$ch = mt_rand(0, count($set)-1);	$ch = my_rand(0, count($set)-1);
$str .= $set[$ch]; }	$str .= $set[$ch]; }
Zeile 2303	Zeile 2333
reset($smiliecache); if($mybb->settings['smilieinsertertot'] >= $smiliecount)	reset($smiliecache); if($mybb->settings['smilieinsertertot'] >= $smiliecount)
{	{
$mybb->settings['smilieinsertertot'] = $smiliecount; } else if($mybb->settings['smilieinsertertot'] < $smiliecount)	$mybb->settings['smilieinsertertot'] = $smiliecount; } else if($mybb->settings['smilieinsertertot'] < $smiliecount)
Zeile 2866	Zeile 2896
} $navsize = count($navbits);	} $navsize = count($navbits);
$navbits[$navsize]['name'] = $forumnav['name'];	// Convert & to & $navbits[$navsize]['name'] = preg_replace("#&(?!\#[0-9]+;)#si", "&", $forumnav['name']);
if(IN_ARCHIVE == 1) {	if(IN_ARCHIVE == 1) {
Zeile 2938	Zeile 2969
$url = "{$base_url}forum-{$id}.html"; break; default:	$url = "{$base_url}forum-{$id}.html"; break; default:
$url = $mybb->setings['bburl']."/archive/index.php";	$url = $mybb->settings['bburl']."/archive/index.php";
} return $url;	} return $url;
Zeile 3310	Zeile 3341
*/ function join_usergroup($uid, $joingroup) {	*/ function join_usergroup($uid, $joingroup) {
global $db;	global $db, $mybb;
if($uid == $mybb->user['uid']) { $user = $mybb->user;	if($uid == $mybb->user['uid']) { $user = $mybb->user;
}	}
else { $query = $db->simple_select("users", "additionalgroups, usergroup", "uid='".intval($uid)."'"); $user = $db->fetch_array($query); }	else { $query = $db->simple_select("users", "additionalgroups, usergroup", "uid='".intval($uid)."'"); $user = $db->fetch_array($query); }

// Build the new list of additional groups for this user and make sure they're in the right format $usergroups = ""; $usergroups = $user['additionalgroups'].",".$joingroup;	// Build the new list of additional groups for this user and make sure they're in the right format $usergroups = ""; $usergroups = $user['additionalgroups'].",".$joingroup;
Zeile 3333	Zeile 3364
foreach($groups as $gid) { if(trim($gid) != "" && $gid != $user['usergroup'] && !$donegroup[$gid])	foreach($groups as $gid) { if(trim($gid) != "" && $gid != $user['usergroup'] && !$donegroup[$gid])
{ $groupslist .= $comma.$gid;	{ $groupslist .= $comma.$gid;
$comma = ","; $donegroup[$gid] = 1; } } }	$comma = ","; $donegroup[$gid] = 1; } } }
$db->update_query("users", array('additionalgroups' => $groupslist), "uid='".intval($uid)."'");	// What's the point in updating if they're the same? if($groupslist != $user['additionalgroups']) { $db->update_query("users", array('additionalgroups' => $groupslist), "uid='".intval($uid)."'"); return true; } else { return false; }
} /**	} /**
Zeile 3357	Zeile 3397
if($uid == $mybb->user['uid']) { $user = $mybb->user;	if($uid == $mybb->user['uid']) { $user = $mybb->user;
} else {	} else {
$query = $db->simple_select("users", "*", "uid='".intval($uid)."'"); $user = $db->fetch_array($query);	$query = $db->simple_select("users", "*", "uid='".intval($uid)."'"); $user = $db->fetch_array($query);
}	}

$usergroups = "";
$groupslist = "";	$groupslist = "";
	$usergroups = "";
$usergroups = $user['additionalgroups'].","; $groups = explode(",", $user['additionalgroups']);	$usergroups = $user['additionalgroups'].","; $groups = explode(",", $user['additionalgroups']);
Zeile 3382	Zeile 3422
} } }	} } }

$dispupdate = ""; if($leavegroup == $user['displaygroup']) {	$dispupdate = ""; if($leavegroup == $user['displaygroup']) {
Zeile 3455	Zeile 3495
} return array('location' => $location, 'form_html' => $form_html, 'form_method' => $mybb->request_method);	} return array('location' => $location, 'form_html' => $form_html, 'form_method' => $mybb->request_method);
}	}
else { if(isset($_SERVER['QUERY_STRING']))	else { if(isset($_SERVER['QUERY_STRING']))
Zeile 3481	Zeile 3521
if(isset($addloc) && is_array($addloc)) {	if(isset($addloc) && is_array($addloc)) {
$location .= "?".implode("&", $addloc);	if(strpos($location, "?") === false) { $location .= "?"; } else { $location .= "&"; } $location .= implode("&", $addloc);
} }	} }
Zeile 3504	Zeile 3552
global $db, $themeselect, $tcache, $lang, $mybb, $limit; if($tid == 0)	global $db, $themeselect, $tcache, $lang, $mybb, $limit; if($tid == 0)
{	{
$themeselect = "<select name=\"$name\">"; $themeselect .= "<option value=\"0\">".$lang->use_default."</option>\n"; $themeselect .= "<option value=\"0\">-----------</option>\n";	$themeselect = "<select name=\"$name\">"; $themeselect .= "<option value=\"0\">".$lang->use_default."</option>\n"; $themeselect .= "<option value=\"0\">-----------</option>\n";
Zeile 3522	Zeile 3570
} if(is_array($tcache[$tid]))	} if(is_array($tcache[$tid]))
{	{
// Figure out what groups this user is in if($mybb->user['additionalgroups']) {	// Figure out what groups this user is in if($mybb->user['additionalgroups']) {
Zeile 3540	Zeile 3588
$allowed_groups = explode(",", $theme['allowedgroups']); // See if groups user is in is allowed foreach($allowed_groups as $agid)	$allowed_groups = explode(",", $theme['allowedgroups']); // See if groups user is in is allowed foreach($allowed_groups as $agid)
{	{
if(in_array($agid, $in_groups)) { $is_allowed = true;	if(in_array($agid, $in_groups)) { $is_allowed = true;
Zeile 3558	Zeile 3606
} if($theme['pid'] != 0)	} if($theme['pid'] != 0)
{	{
$themeselect .= "<option value=\"".$theme['tid']."\"$sel>".$depth.$theme['name']."</option>"; $depthit = $depth."--"; }	$themeselect .= "<option value=\"".$theme['tid']."\"$sel>".$depth.$theme['name']."</option>"; $depthit = $depth."--"; }
Zeile 3577	Zeile 3625
} return $themeselect;	} return $themeselect;
} /**	} /**
* Custom function for htmlspecialchars which takes in to account unicode * * @param string The string to format	* Custom function for htmlspecialchars which takes in to account unicode * * @param string The string to format
Zeile 3607	Zeile 3655
if($number == "-") { return $number;	if($number == "-") { return $number;
}	}
if(is_int($number)) { return number_format($number, 0, $mybb->settings['decpoint'], $mybb->settings['thousandssep']);	if(is_int($number)) { return number_format($number, 0, $mybb->settings['decpoint'], $mybb->settings['thousandssep']);
Zeile 3624	Zeile 3672
else { $decimals = 0;	else { $decimals = 0;
} return number_format($number, $decimals, $mybb->settings['decpoint'], $mybb->settings['thousandssep']); }	} return number_format((double)$number, $decimals, $mybb->settings['decpoint'], $mybb->settings['thousandssep']); } } function convert_through_utf8($str, $to=true) { global $lang; static $charset; static $use_mb; static $use_iconv; if(!isset($charset)) { $charset = my_strtolower($lang->settings['charset']); } if($charset == "utf-8") { return $str; } if(!isset($use_iconv)) { $use_iconv = function_exists("iconv"); } if(!isset($use_mb)) { $use_mb = function_exists("mb_convert_encoding"); } if($use_iconv \|\| $use_mb) { if($to) { $from_charset = $lang->settings['charset']; $to_charset = "UTF-8"; } else { $from_charset = "UTF-8"; $to_charset = $lang->settings['charset']; } if($use_iconv) { return iconv($from_charset, $to_charset."//IGNORE", $str); } else { return @mb_convert_encoding($str, $to_charset, $from_charset); } } elseif($charset == "iso-8859-1" && function_exists("utf8_encode")) { if($to) { return utf8_encode($str); } else { return utf8_decode($str); } } else { return $str; }
} /**	} /**
Zeile 3642	Zeile 3755
if($mybb->settings['wordwrap'] > 0) {	if($mybb->settings['wordwrap'] > 0) {
if($mybb->config['db_encoding'] == "utf8" && !preg_match("#[\x80-\xFF]#", $message)) { $message = preg_replace("#(?>[^\s&/<>\"\\-\.\[\]]{{$mybb->settings['wordwrap']}})#u", "$0 ", $message); } else	$message = convert_through_utf8($message); if(!($new_message = @preg_replace("#(?>[^\s&/<>\"\\-\.\[\]]{{$mybb->settings['wordwrap']}})#u", "$0", $message)))
{	{
$message = preg_replace("#(?>[^\s&/<>\"\\-\.\[\]]{{$mybb->settings['wordwrap']}})#", "$0 ", $message);	$new_message = preg_replace("#(?>[^\s&/<>\"\\-\.\[\]]{{$mybb->settings['wordwrap']}})#", "$0", $message);
}	}
	$new_message = convert_through_utf8($new_message, false); return $new_message;
}	}

return $message;	return $message;
} /** * Workaround for date limitation in PHP to establish the day of a birthday (Provided by meme) * * @param int The month of the birthday	} /** * Workaround for date limitation in PHP to establish the day of a birthday (Provided by meme) * * @param int The month of the birthday
* @param int The day of the birthday * @param int The year of the bithday * @return int The numeric day of the week for the birthday	* @param int The day of the birthday * @param int The year of the bithday * @return int The numeric day of the week for the birthday
Zeile 3761	Zeile 3876
$find = array( 'm', 'd',	$find = array( 'm', 'd',
	'D',
'y', 'Y', 'j', 'S', 'l', 'F',	'y', 'Y', 'j', 'S', 'l', 'F',
	'M',
); $replace = array( sprintf('%02s', $bm), sprintf('%02s', $bd),	); $replace = array( sprintf('%02s', $bm), sprintf('%02s', $bd),
	($wd == 2 ? my_substr($bdays[$wd], 0, 4) : ($wd == 4 ? my_substr($bdays[$wd], 0, 5) : my_substr($bdays[$wd], 0, 3))),
my_substr($by, 2), $by, ($bd[0] == 0 ? my_substr($bd, 1) : $bd), ($bd == 1 \|\| $bd == 21 \|\| $bd == 31 ? 'st' : ($bd == 2 \|\| $bd == 22 ? 'nd' : ($bd == 3 \|\| $bd == 23 ? 'rd' : 'th'))),	my_substr($by, 2), $by, ($bd[0] == 0 ? my_substr($bd, 1) : $bd), ($bd == 1 \|\| $bd == 21 \|\| $bd == 31 ? 'st' : ($bd == 2 \|\| $bd == 22 ? 'nd' : ($bd == 3 \|\| $bd == 23 ? 'rd' : 'th'))),
$bdays[$wd],	$wd,
$bmonth[$bm-1],	$bmonth[$bm-1],
	($bm == 9 ? my_substr($bmonth[$bm-1], 0, 4) : my_substr($bmonth[$bm-1], 0, 3)),
);	);
	// Do we have the full month in our output? // If so there's no need for the short month if(strpos($display, 'F') !== false) { array_pop($find); array_pop($replace); }
return str_replace($find, $replace, $display); }	return str_replace($find, $replace, $display); }
Zeile 3798	Zeile 3925
} list($day, $month, $year) = explode("-", my_date("j-n-Y", TIME_NOW, 0, 0));	} list($day, $month, $year) = explode("-", my_date("j-n-Y", TIME_NOW, 0, 0));

$age = $year-$bday[2]; if(($month == $bday[1] && $day < $bday[0]) \|\| $month < $bday[1])	$age = $year-$bday[2]; if(($month == $bday[1] && $day < $bday[0]) \|\| $month < $bday[1])
Zeile 3806	Zeile 3933
--$age; } return $age;	--$age; } return $age;
} /**	} /**
* Updates the first posts in a thread. * * @param int The thread id for which to update the first post id.	* Updates the first posts in a thread. * * @param int The thread id for which to update the first post id.
Zeile 3827	Zeile 3954
); $db->update_query("posts", $replyto_update, "pid='{$post['pid']}'"); }	); $db->update_query("posts", $replyto_update, "pid='{$post['pid']}'"); }

$firstpostup = array( "firstpost" => $post['pid'] );	$firstpostup = array( "firstpost" => $post['pid'] );
Zeile 3865	Zeile 3992
{ $string_length = strlen($string); }	{ $string_length = strlen($string); }

return $string_length; }	return $string_length; }
Zeile 3883	Zeile 4010
if($handle_entities) { $string = unhtmlentities($string);	if($handle_entities) { $string = unhtmlentities($string);
}	}
if(function_exists("mb_substr")) { if($length != "")	if(function_exists("mb_substr")) { if($length != "")
Zeile 3988	Zeile 4115
* @return int The un-htmlentitied' string. */ function unhtmlentities($string)	* @return int The un-htmlentitied' string. */ function unhtmlentities($string)
{ // Replace numeric entities $string = preg_replace('~&#x([0-9a-f]+);~ei', 'chr(hexdec("\\1"))', $string); $string = preg_replace('~&#([0-9]+);~e', 'chr(\\1)', $string); // Replace literal entities $trans_tbl = get_html_translation_table(HTML_ENTITIES); $trans_tbl = array_flip($trans_tbl); return strtr($string, $trans_tbl); } /**	{ // Replace numeric entities $string = preg_replace('~&#x([0-9a-f]+);~ei', 'unichr(hexdec("\\1"))', $string); $string = preg_replace('~&#([0-9]+);~e', 'unichr("\\1")', $string); // Replace literal entities $trans_tbl = get_html_translation_table(HTML_ENTITIES); $trans_tbl = array_flip($trans_tbl); return strtr($string, $trans_tbl); } /** * Returns any ascii to it's character (utf-8 safe). * * @param string The ascii to characterize. * @return int The characterized ascii. / function unichr($c) { if($c <= 0x7F) { return chr($c); } else if($c <= 0x7FF) { return chr(0xC0 \| $c >> 6) . chr(0x80 \| $c & 0x3F); } else if($c <= 0xFFFF) { return chr(0xE0 \| $c >> 12) . chr(0x80 \| $c >> 6 & 0x3F) . chr(0x80 \| $c & 0x3F); } else if($c <= 0x10FFFF) { return chr(0xF0 \| $c >> 18) . chr(0x80 \| $c >> 12 & 0x3F) . chr(0x80 \| $c >> 6 & 0x3F) . chr(0x80 \| $c & 0x3F); } else { return false; } } /*
* Get the event poster. * * @param array The event data array.	* Get the event poster. * * @param array The event data array.
Zeile 4011	Zeile 4171
$event['username'] = format_name($event['username'], $event['usergroup'], $event['displaygroup']); $event_poster = build_profile_link($event['username'], $event['author']); return $event_poster;	$event['username'] = format_name($event['username'], $event['usergroup'], $event['displaygroup']); $event_poster = build_profile_link($event['username'], $event['author']); return $event_poster;
}	}
/** * Get the event date. *	/** * Get the event date. *
Zeile 4037	Zeile 4197
function get_profile_link($uid=0) { $link = str_replace("{uid}", $uid, PROFILE_URL);	function get_profile_link($uid=0) { $link = str_replace("{uid}", $uid, PROFILE_URL);
return htmlspecialchars_uni($link); } /**	return htmlspecialchars_uni($link); } /**
* Get the announcement link. * * @param int The announement id of the announcement. * @return string The url to the announcement.	* Get the announcement link. * * @param int The announement id of the announcement. * @return string The url to the announcement.
*/	*/
function get_announcement_link($aid=0) { $link = str_replace("{aid}", $aid, ANNOUNCEMENT_URL);	function get_announcement_link($aid=0) { $link = str_replace("{aid}", $aid, ANNOUNCEMENT_URL);
Zeile 4054	Zeile 4214
/** * Build the profile link.	/** * Build the profile link.
*	*
* @param string The Username of the profile. * @param int The user id of the profile. * @param string The target frame	* @param string The Username of the profile. * @param int The user id of the profile. * @param string The target frame
Zeile 4081	Zeile 4241
if(!empty($target)) { $target = " target=\"{$target}\"";	if(!empty($target)) { $target = " target=\"{$target}\"";
}	}
if(!empty($onclick))	if(!empty($onclick))
{	{
$onclick = " onclick=\"{$onclick}\""; } // If we're in the archive, link back a directory if(IN_ARCHIVE == 1)	$onclick = " onclick=\"{$onclick}\""; } // If we're in the archive, link back a directory if(IN_ARCHIVE == 1)
{ global $mybb; if($mybb->settings['seourls'] == "yes" \|\| ($mybb->settings['seourls'] == "auto" && $_SERVER['SEO_SUPPORT'] == 1)) { return "<a href=\"../../".get_profile_link($uid)."\"{$target}{$onclick}>{$username}</a>"; } return "<a href=\"../".get_profile_link($uid)."\"{$target}{$onclick}>{$username}</a>";	{ return "<a href=\"../../".get_profile_link($uid)."\"{$target}{$onclick}>{$username}</a>";
} elseif(IN_ADMINCP == 1) {	} elseif(IN_ADMINCP == 1) {
Zeile 4117	Zeile 4270
* @param int The forum id of the forum. * @param int (Optional) The page number of the forum. * @return string The url to the forum.	* @param int The forum id of the forum. * @param int (Optional) The page number of the forum. * @return string The url to the forum.
*/	*/
function get_forum_link($fid, $page=0) { if($page > 0) { $link = str_replace("{fid}", $fid, FORUM_URL_PAGED);	function get_forum_link($fid, $page=0) { if($page > 0) { $link = str_replace("{fid}", $fid, FORUM_URL_PAGED);
$link = str_replace("{page}", $page, $link); return htmlspecialchars_uni($link); }	$link = str_replace("{page}", $page, $link); return htmlspecialchars_uni($link); }
else { $link = str_replace("{fid}", $fid, FORUM_URL);	else { $link = str_replace("{fid}", $fid, FORUM_URL);
Zeile 4142	Zeile 4295
* @return string The url to the thread. */ function get_thread_link($tid, $page=0, $action='')	* @return string The url to the thread. */ function get_thread_link($tid, $page=0, $action='')
{	{
if($page > 1) { if($action)	if($page > 1) { if($action)
Zeile 4186	Zeile 4339
{ $link = str_replace("{tid}", $tid, THREAD_URL_POST); $link = str_replace("{pid}", $pid, $link);	{ $link = str_replace("{tid}", $tid, THREAD_URL_POST); $link = str_replace("{pid}", $pid, $link);
return htmlspecialchars_uni($link); } else {	return htmlspecialchars_uni($link); } else {
$link = str_replace("{pid}", $pid, POST_URL); return htmlspecialchars_uni($link); }	$link = str_replace("{pid}", $pid, POST_URL); return htmlspecialchars_uni($link); }
Zeile 4204	Zeile 4357
function get_event_link($eid) { $link = str_replace("{eid}", $eid, EVENT_URL);	function get_event_link($eid) { $link = str_replace("{eid}", $eid, EVENT_URL);
return htmlspecialchars_uni($link); } /**	return htmlspecialchars_uni($link); } /**
* Build the link to a specified date on the calendar * * @param int The ID of the calendar	* Build the link to a specified date on the calendar * * @param int The ID of the calendar
Zeile 4223	Zeile 4376
$link = str_replace("{month}", $month, CALENDAR_URL_DAY); $link = str_replace("{year}", $year, $link); $link = str_replace("{day}", $day, $link);	$link = str_replace("{month}", $month, CALENDAR_URL_DAY); $link = str_replace("{year}", $year, $link); $link = str_replace("{day}", $day, $link);
$link = str_replace("{calendar}", $calendar, $link); return htmlspecialchars_uni($link); }	$link = str_replace("{calendar}", $calendar, $link); return htmlspecialchars_uni($link); }
else if($month > 0) { $link = str_replace("{month}", $month, CALENDAR_URL_MONTH);	else if($month > 0) { $link = str_replace("{month}", $month, CALENDAR_URL_MONTH);
Zeile 4234	Zeile 4387
return htmlspecialchars_uni($link); } else if($year > 0)	return htmlspecialchars_uni($link); } else if($year > 0)
{	{
$link = str_replace("{year}", $year, CALENDAR_URL_YEAR); $link = str_replace("{calendar}", $calendar, $link);	$link = str_replace("{year}", $year, CALENDAR_URL_YEAR); $link = str_replace("{calendar}", $calendar, $link);
return htmlspecialchars_uni($link);	return htmlspecialchars_uni($link);
} else { $link = str_replace("{calendar}", $calendar, CALENDAR_URL); return htmlspecialchars_uni($link);	} else { $link = str_replace("{calendar}", $calendar, CALENDAR_URL); return htmlspecialchars_uni($link);
}	}
} /**	} /**
Zeile 4256	Zeile 4409
*/ function get_calendar_week_link($calendar, $week) {	*/ function get_calendar_week_link($calendar, $week) {
	if($week < 0) { $week = str_replace('-', "n", $week); }
$link = str_replace("{week}", $week, CALENDAR_URL_WEEK); $link = str_replace("{calendar}", $calendar, $link); return htmlspecialchars_uni($link);	$link = str_replace("{week}", $week, CALENDAR_URL_WEEK); $link = str_replace("{calendar}", $calendar, $link); return htmlspecialchars_uni($link);
} /**	} /**
* Get the user data of a user id. * * @param int The user id of the user.	* Get the user data of a user id. * * @param int The user id of the user.
Zeile 4509	Zeile 4666
} // Work out if the user has waited long enough before letting them login again	} // Work out if the user has waited long enough before letting them login again
if($mybb->cookies['failedlogin'] < $now - $mybb->settings['failedlogintime'] * 60)	if($mybb->cookies['failedlogin'] < ($now - $mybb->settings['failedlogintime'] * 60) && $mybb->user['uid'] != 0)
{ my_setcookie('loginattempts', 1); my_unsetcookie('failedlogin'); $update_array = array( 'loginattempts' => 1 );	{ my_setcookie('loginattempts', 1); my_unsetcookie('failedlogin'); $update_array = array( 'loginattempts' => 1 );
$db->update_query("sessions", $update_array, "sid = '{$session->sid}'");	$db->update_query("users", $update_array, "uid = '{$mybb->user['uid']}'");
return 1; } // Not waited long enough	return 1; } // Not waited long enough
else	else if($mybb->cookies['failedlogin'] > ($now - $mybb->settings['failedlogintime'] * 60))
{ if($fatal) {	{ if($fatal) {
Zeile 4548	Zeile 4705
return false; } // Valid local characters for email addresses: http://www.remote.org/jochen/mail/info/chars.html	return false; } // Valid local characters for email addresses: http://www.remote.org/jochen/mail/info/chars.html
return preg_match("/^[a-zA-Z0-9&*+\-_.{}~^\?=\/]+@[a-zA-Z0-9-]+\.[a-zA-Z0-9.-]+$/si", $email);	return preg_match("/^[a-zA-Z0-9&+\-_.{}~^\?=\/]+@[a-zA-Z0-9-]+\.([a-zA-Z0-9-]+\.)[a-zA-Z0-9-]{2,}$/si", $email);
} /**	} /**
Zeile 4631	Zeile 4788
*/ function build_highlight_array($terms) {	*/ function build_highlight_array($terms) {
	global $mybb; if($mybb->settings['minsearchword'] < 1) { $mybb->settings['minsearchword'] = 3; }
// Strip out any characters that shouldn't be included $bad_characters = array( "(",	// Strip out any characters that shouldn't be included $bad_characters = array( "(",
Zeile 4647	Zeile 4811
$inquote = false; $terms = explode("\"", $terms); foreach($terms as $phrase)	$inquote = false; $terms = explode("\"", $terms); foreach($terms as $phrase)
{	{
$phrase = htmlspecialchars_uni($phrase); if($phrase != "") { if($inquote) {	$phrase = htmlspecialchars_uni($phrase); if($phrase != "") { if($inquote) {
$words[] = "\"".trim($phrase)."\"";	$words[] = trim($phrase);
} else {	} else {
Zeile 4664	Zeile 4828
} foreach($split_words as $word) {	} foreach($split_words as $word) {
if(!$word)	if(!$word \|\| strlen($word) < $mybb->settings['minsearchword'])
{ continue; }	{ continue; }
Zeile 4673	Zeile 4837
} } $inquote = !$inquote;	} } $inquote = !$inquote;
}	}
} // Otherwise just a simple search query with no phrases else	} // Otherwise just a simple search query with no phrases else
Zeile 4681	Zeile 4845
$terms = htmlspecialchars_uni($terms); $split_words = preg_split("#\s{1,}#", $terms, -1); if(!is_array($split_words))	$terms = htmlspecialchars_uni($terms); $split_words = preg_split("#\s{1,}#", $terms, -1); if(!is_array($split_words))
{	{
continue; } foreach($split_words as $word) {	continue; } foreach($split_words as $word) {
if(!$word)	if(!$word \|\| strlen($word) < $mybb->settings['minsearchword'])
{ continue; }	{ continue; }
Zeile 4699	Zeile 4863
{ return false; }	{ return false; }
	// Sort the word array by length. Largest terms go first and work their way down to the smallest term. // This resolves problems like "test tes" where "tes" will be highlighted first, then "test" can't be highlighted because of the changed html usort($words, create_function('$a,$b','return strlen($b) - strlen($a);'));
// Loop through our words to build the PREG compatible strings foreach($words as $word)	// Loop through our words to build the PREG compatible strings foreach($words as $word)
Zeile 4714	Zeile 4882
} // Now make PREG compatible	} // Now make PREG compatible
$find = "#(^\|>)([^<]*)(".preg_quote($word, "#").")#i"; $replacement = "$1$2<span class=\"highlight\">$3</span>";	$find = "#(?!<.?)(".preg_quote($word, "#").")(?![^<>]?>)#i"; $replacement = "<span class=\"highlight\" style=\"padding-left: 0px; padding-right: 0px;\">$1</span>";
$highlight_cache[$find] = $replacement; }	$highlight_cache[$find] = $replacement; }
Zeile 4954	Zeile 5122
* @param string The URL of the remote file * @return string The remote file contents. */	* @param string The URL of the remote file * @return string The remote file contents. */
function fetch_remote_file($url)	function fetch_remote_file($url, $post_data=array())
{	{
	$post_body = ''; if(!empty($post_data)) { foreach($post_data as $key => $val) { $post_body .= '&'.urlencode($key).'='.urlencode($val); } $post_body = ltrim($post_body, '&'); }
if(function_exists("curl_init")) { $ch = curl_init();	if(function_exists("curl_init")) { $ch = curl_init();
Zeile 4963	Zeile 5141
curl_setopt($ch, CURLOPT_HEADER, 0); curl_setopt($ch, CURLOPT_TIMEOUT, 10); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);	curl_setopt($ch, CURLOPT_HEADER, 0); curl_setopt($ch, CURLOPT_TIMEOUT, 10); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
	if(!empty($post_body)) { curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_POSTFIELDS, $post_body); }
$data = curl_exec($ch); curl_close($ch); return $data; }	$data = curl_exec($ch); curl_close($ch); return $data; }
else if(function_exists("fsockopen"))	else if(function_exists("fsockopen"))
{ $url = @parse_url($url); if(!$url['host'])	{ $url = @parse_url($url); if(!$url['host'])
Zeile 4983	Zeile 5166
$url['path'] = "/"; } if($url['query'])	$url['path'] = "/"; } if($url['query'])
{	{
$url['path'] .= "?{$url['query']}"; } $fp = @fsockopen($url['host'], $url['port'], $error_no, $error, 10);	$url['path'] .= "?{$url['query']}"; } $fp = @fsockopen($url['host'], $url['port'], $error_no, $error, 10);
Zeile 4992	Zeile 5175
{ return false; }	{ return false; }
$headers = "GET {$url['path']} HTTP/1.1\r\n"; $headers .= "Host: {$url['host']}\r\n"; $headers .= "Connection: Close\r\n\r\n";	$headers = array(); if(!empty($post_body)) { $headers[] = "POST {$url['path']} HTTP/1.0"; $headers[] = "Content-Length: ".strlen($post_body); $headers[] = "Content-Type: application/x-www-form-urlencoded"; } else { $headers[] = "GET {$url['path']} HTTP/1.0"; } $headers[] = "Host: {$url['host']}"; $headers[] = "Connection: Close"; $headers[] = "\r\n"; if(!empty($post_body)) { $headers[] = $post_body; } $headers = implode("\r\n", $headers);
if(!@fwrite($fp, $headers)) { return false;	if(!@fwrite($fp, $headers)) { return false;
Zeile 5007	Zeile 5209
$data = explode("\r\n\r\n", $data, 2); return $data[1]; }	$data = explode("\r\n\r\n", $data, 2); return $data[1]; }
else	else if(empty($post_data))
{ return @implode("", @file($url));	{ return @implode("", @file($url));
} }	} else { return false; } }
/** * Checks if a particular user is a super administrator. * * @param int The user ID to check against the list of super admins * @return boolean True if a super admin, false if not	/** * Checks if a particular user is a super administrator. * * @param int The user ID to check against the list of super admins * @return boolean True if a super admin, false if not
*/	*/
function is_super_admin($uid) { global $mybb;	function is_super_admin($uid) { global $mybb;
Zeile 5029	Zeile 5235
return false; } else	return false; } else
{	{
return true; } }	return true; } }
Zeile 5051	Zeile 5257
if($escape) { if(is_array($escape))	if($escape) { if(is_array($escape))
{	{
function escaped_explode_escape($string) { return preg_quote($string, "#"); } $escape_preg = "(".implode("\|", array_map("escaped_explode_escape", $escape)).")";	function escaped_explode_escape($string) { return preg_quote($string, "#"); } $escape_preg = "(".implode("\|", array_map("escaped_explode_escape", $escape)).")";
}	}
else { $escape_preg = preg_quote($escape, "#"); } $quoted_strings = preg_split("#(?<!\\\){$escape_preg}#", $string);	else { $escape_preg = preg_quote($escape, "#"); } $quoted_strings = preg_split("#(?<!\\\){$escape_preg}#", $string);
}	}
else { $quoted_strings = array($string); } foreach($quoted_strings as $string)	else { $quoted_strings = array($string); } foreach($quoted_strings as $string)
{	{
if($string != "") { if($in_escape)	if($string != "") { if($in_escape)
Zeile 5097	Zeile 5303
/** * Fetch an IPv4 long formatted range for searching IPv4 IP addresses.	/** * Fetch an IPv4 long formatted range for searching IPv4 IP addresses.
*	*
* @param string The IP address to convert to a range based LONG * @rturn mixed If a full IP address is provided, the ip2long equivilent, otherwise an array of the upper & lower extremities of the IP */ function fetch_longipv4_range($ip) { $ip_bits = explode(".", $ip);	* @param string The IP address to convert to a range based LONG * @rturn mixed If a full IP address is provided, the ip2long equivilent, otherwise an array of the upper & lower extremities of the IP */ function fetch_longipv4_range($ip) { $ip_bits = explode(".", $ip);
	$ip_string1 = $ip_string2 = "";

if($ip == "*") return array(ip2long(0), ip2long(255));	if($ip == "*") { return array(ip2long('0.0.0.0'), ip2long('255.255.255.255')); }
if(strpos($ip, ".*") === false) {	if(strpos($ip, ".*") === false) {
Zeile 5122	Zeile 5332
// Wildcard based IP provided else {	// Wildcard based IP provided else {
	$sep = "";
foreach($ip_bits as $piece) { if($piece == "*") {	foreach($ip_bits as $piece) { if($piece == "*") {
return array(ip2long($ip_string."0"), ip2long($ip_string."255"));	$ip_string1 .= $sep."0"; $ip_string2 .= $sep."255";
} else {	} else {
$ip_string .= $piece.".";	$ip_string1 .= $sep.$piece; $ip_string2 .= $sep.$piece;
}	}
	$sep = ".";
}	}
	return array(ip2long($ip_string1), ip2long($ip_string2));
} }	} }
Zeile 5192	Zeile 5407
$n[2] += $d[1]; $n[3] += $d[2]; return mktime(date("G"), date("i"), 0, $n[2], $n[1], $n[3]);	$n[2] += $d[1]; $n[3] += $d[2]; return mktime(date("G"), date("i"), 0, $n[2], $n[1], $n[3]);
}	}
/** * Expire old warnings in the database.	/** * Expire old warnings in the database.
Zeile 5201	Zeile 5416
function expire_warnings() { global $db;	function expire_warnings() { global $db;
	$users = array();
$query = $db->query(" SELECT w.wid, w.uid, w.points, u.warningpoints FROM ".TABLE_PREFIX."warnings w	$query = $db->query(" SELECT w.wid, w.uid, w.points, u.warningpoints FROM ".TABLE_PREFIX."warnings w
Zeile 5213	Zeile 5431
"expired" => 1 ); $db->update_query("warnings", $updated_warning, "wid='{$warning['wid']}'");	"expired" => 1 ); $db->update_query("warnings", $updated_warning, "wid='{$warning['wid']}'");
$warning['warningpoints'] -= $warning['points']; if($warning['warningpoints'] < 0)	if(array_key_exists($warning['uid'], $users)) { $users[$warning['uid']] -= $warning['points']; } else { $users[$warning['uid']] = $warning['warningpoints']-$warning['points']; } } foreach($users as $uid => $warningpoints) { if($warningpoints < 0)
{	{
$warning['warningpoints'] = 0;	$warningpoints = 0;
}	}

$updated_user = array(	$updated_user = array(
"warningpoints" => intval($warning['warningpoints'])	"warningpoints" => intval($warningpoints)
);	);
$db->update_query("users", $updated_user, "uid='{$warning['uid']}'");	$db->update_query("users", $updated_user, "uid='".intval($uid)."'");
} }	} }
Zeile 5289	Zeile 5520
function my_rmdir_recursive($path, $ignore=array()) { global $orig_dir;	function my_rmdir_recursive($path, $ignore=array()) { global $orig_dir;

if(!isset($orig_dir)) { $orig_dir = $path;	if(!isset($orig_dir)) { $orig_dir = $path;
Zeile 5336	Zeile 5567
} return $count;	} return $count;
	} /** * Returns a securely generated seed for PHP's RNG (Random Number Generator) * * @param int Length of the seed bytes (8 is default. Provides good cryptographic variance) * @return int An integer equivilent of a secure hexadecimal seed / function secure_seed_rng($count=8) { $output = ''; // Try the OpenSSL method first. This is the strongest. if(function_exists('openssl_random_pseudo_bytes')) { $output = openssl_random_pseudo_bytes($count, $strong); if($strong !== true) { $output = ''; } } if($output == '') { // Then try the unix/linux method if(@is_readable('/dev/urandom') && ($handle = @fopen('/dev/urandom', 'rb'))) { $output = @fread($handle, $count); @fclose($handle); } } // Didn't work? Do we still not have enough bytes? Use our own (less secure) rng generator if(strlen($output) < $count) { $output = ''; // Close to what PHP basically uses internally to seed, but not quite. $unique_state = microtime().@getmypid(); for($i = 0; $i < $count; $i += 16) { $unique_state = md5(microtime().$unique_state); $output .= pack('H', md5($unique_state)); } } // /dev/urandom and openssl will always be twice as long as $count. base64_encode will roughly take up 33% more space but crc32 will put it to 32 characters $output = hexdec(substr(dechex(crc32(base64_encode($output))), 0, $count)); return $output; } /** * Wrapper function for mt_rand. Automatically seeds using a secure seed once. * * @param int Optional lowest value to be returned (default: 0) * @param int Optional highest value to be returned (default: mt_getrandmax()) * @param boolean True forces it to reseed the RNG first * @return int An integer equivilent of a secure hexadecimal seed */ function my_rand($min=null, $max=null, $force_seed=false) { static $seeded = false; if($seeded == false \|\| $force_seed == true) { mt_srand(secure_seed_rng()); $seeded = true; } if($min !== null && $max !== null) { return mt_rand($min, $max); } else { return mt_rand(); }
} ?>	} ?>