Vergleich inc/functions.php - 1.6.10 - 1.6.14

Keine Änderungen Hinzugefügt Modifiziert Entfernt
Zeile 21	Zeile 21
$contents = parse_page($contents); $totaltime = $maintimer->stop();	$contents = parse_page($contents); $totaltime = $maintimer->stop();
	$contents = $plugins->run_hooks("pre_output_page", $contents);
if($mybb->usergroup['cancp'] == 1) {	if($mybb->usergroup['cancp'] == 1) {
Zeile 39	Zeile 40
// if we've got a super fast script... all we can do is assume something $percentphp = 0; $percentsql = 0;	// if we've got a super fast script... all we can do is assume something $percentphp = 0; $percentsql = 0;
} $phpversion = PHP_VERSION;	} $phpversion = PHP_VERSION;
$serverload = get_server_load(); if(my_strpos(getenv("REQUEST_URI"), "?"))	$serverload = get_server_load(); if(my_strpos(getenv("REQUEST_URI"), "?"))
Zeile 52	Zeile 53
else { $debuglink = htmlspecialchars_uni(getenv("REQUEST_URI")) . "?debug=1";	else { $debuglink = htmlspecialchars_uni(getenv("REQUEST_URI")) . "?debug=1";
}	}
if($mybb->settings['gzipoutput'] != 0)	if($mybb->settings['gzipoutput'] != 0)
{	{
$gzipen = "Enabled";	$gzipen = "Enabled";
}	}
else { $gzipen = "Disabled";	else { $gzipen = "Disabled";
} $memory_usage = get_memory_usage();	} $memory_usage = get_memory_usage();
if($memory_usage)	if($memory_usage)
{	{
$memory_usage = " / Memory Usage: ".get_friendly_size($memory_usage);	$memory_usage = " / Memory Usage: ".get_friendly_size($memory_usage);
}	}
else	else
{	{
$memory_usage = '';	$memory_usage = '';
}	} // MySQLi is still MySQL, so present it that way to the user $database_server = $db->short_title;

	if($database_server == 'MySQLi') { $database_server = 'MySQL'; }
$other = "PHP version: $phpversion / Server Load: $serverload / GZip Compression: $gzipen";	$other = "PHP version: $phpversion / Server Load: $serverload / GZip Compression: $gzipen";
$debugstuff = "Generated in $totaltime seconds ($percentphp% PHP / $percentsql% MySQL)<br />SQL Queries: $db->query_count / Global Parsing Time: $globaltime$memory_usage<br />$other<br />[<a href=\"$debuglink\" target=\"_blank\">advanced details</a>]<br />";	$debugstuff = "Generated in $totaltime seconds ($percentphp% PHP / $percentsql% ".$database_server.")<br />SQL Queries: $db->query_count / Global Parsing Time: $globaltime$memory_usage<br />$other<br />[<a href=\"$debuglink\" target=\"_blank\">advanced details</a>]<br />";
$contents = str_replace("<debugstuff>", $debugstuff, $contents); }	$contents = str_replace("<debugstuff>", $debugstuff, $contents); }
Zeile 86	Zeile 93
} $contents = str_replace("<debugstuff>", "", $contents);	} $contents = str_replace("<debugstuff>", "", $contents);
$contents = $plugins->run_hooks("pre_output_page", $contents);
if($mybb->settings['gzipoutput'] == 1) { $contents = gzip_encode($contents, $mybb->settings['gziplevel']); }	if($mybb->settings['gzipoutput'] == 1) { $contents = gzip_encode($contents, $mybb->settings['gziplevel']); }

@header("Content-type: text/html; charset={$lang->settings['charset']}");	@header("Content-type: text/html; charset={$lang->settings['charset']}");

echo $contents; $plugins->run_hooks("post_output_page"); }	echo $contents; $plugins->run_hooks("post_output_page"); }

/** * Adds a function or class to the list of code to run on shutdown. *	/** * Adds a function or class to the list of code to run on shutdown. *
Zeile 110	Zeile 116
function add_shutdown($name, $arguments=array()) { global $shutdown_functions;	function add_shutdown($name, $arguments=array()) { global $shutdown_functions;
	if(!is_array($shutdown_functions)) { $shutdown_functions = array(); }
if(!is_array($arguments)) { $arguments = array($arguments);	if(!is_array($arguments)) { $arguments = array($arguments);
Zeile 118	Zeile 129
if(is_array($name) && method_exists($name[0], $name[1])) {	if(is_array($name) && method_exists($name[0], $name[1])) {
$shutdown_functions["class_".get_class($name[0])."_".$name[1]] = array('function' => $name, 'arguments' => $arguments);	$shutdown_functions[] = array('function' => $name, 'arguments' => $arguments);
return true; } else if(!is_array($name) && function_exists($name)) {	return true; } else if(!is_array($name) && function_exists($name)) {
$shutdown_functions[$name] = array('function' => $name, 'arguments' => $arguments);	$shutdown_functions[] = array('function' => $name, 'arguments' => $arguments);
return true; }	return true; }
Zeile 162	Zeile 173
{ require MYBB_ROOT."inc/config.php"; }	{ require MYBB_ROOT."inc/config.php"; }

if(isset($config)) { require_once MYBB_ROOT."inc/db_".$config['database']['type'].".php";	if(isset($config)) { require_once MYBB_ROOT."inc/db_".$config['database']['type'].".php";
Zeile 170	Zeile 181
{ case "sqlite": $db = new DB_SQLite;	{ case "sqlite": $db = new DB_SQLite;
break;	break;
case "pgsql": $db = new DB_PgSQL; break;	case "pgsql": $db = new DB_PgSQL; break;
Zeile 180	Zeile 191
default: $db = new DB_MySQL; }	default: $db = new DB_MySQL; }

$db->connect($config['database']); define("TABLE_PREFIX", $config['database']['table_prefix']); $db->set_table_prefix(TABLE_PREFIX);	$db->connect($config['database']); define("TABLE_PREFIX", $config['database']['table_prefix']); $db->set_table_prefix(TABLE_PREFIX);
} }	} }
// Cache object deconstructed? reconstruct if(!is_object($cache))	// Cache object deconstructed? reconstruct if(!is_object($cache))
Zeile 220	Zeile 231
foreach($shutdown_functions as $function) { call_user_func_array($function['function'], $function['arguments']);	foreach($shutdown_functions as $function) { call_user_func_array($function['function'], $function['arguments']);
} }	} }
$done_shutdown = true; }	$done_shutdown = true; }
Zeile 251	Zeile 262
{ // Delete the message from the queue $db->delete_query("mailqueue", "mid='{$email['mid']}'");	{ // Delete the message from the queue $db->delete_query("mailqueue", "mid='{$email['mid']}'");

if($db->affected_rows() == 1) {	if($db->affected_rows() == 1) {
my_mail($email['mailto'], $email['subject'], $email['message'], $email['mailfrom'], "", $email['headers']);	my_mail($email['mailto'], $email['subject'], $email['message'], $email['mailfrom'], "", $email['headers'], true);
} } // Update the mailqueue cache and remove the lock $cache->update_mailqueue(TIME_NOW, 0);	} } // Update the mailqueue cache and remove the lock $cache->update_mailqueue(TIME_NOW, 0);
}	}
$plugins->run_hooks("send_mail_queue_end"); }	$plugins->run_hooks("send_mail_queue_end"); }
Zeile 271	Zeile 282
* @return string The parsed page. */ function parse_page($contents)	* @return string The parsed page. */ function parse_page($contents)
{	{
global $lang, $theme, $mybb, $htmldoctype, $archive_url, $error_handler; $contents = str_replace('<navigation>', build_breadcrumb(1), $contents);	global $lang, $theme, $mybb, $htmldoctype, $archive_url, $error_handler; $contents = str_replace('<navigation>', build_breadcrumb(1), $contents);
Zeile 285	Zeile 296
{ $contents = "<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\">\n".$contents; }	{ $contents = "<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\">\n".$contents; }
$contents = str_replace("<html", "<html xmlns=\"http://www.w3.org/1999/xhtml\"", $contents);	$contents = str_replace("<html", "<html xmlns=\"http://www.w3.org/1999/xhtml\"", $contents);
if($lang->settings['rtl'] == 1)	if($lang->settings['rtl'] == 1)
{	{
$contents = str_replace("<html", "<html dir=\"rtl\"", $contents);	$contents = str_replace("<html", "<html dir=\"rtl\"", $contents);
}	}
if($lang->settings['htmllang']) { $contents = str_replace("<html", "<html xml:lang=\"".$lang->settings['htmllang']."\" lang=\"".$lang->settings['htmllang']."\"", $contents);	if($lang->settings['htmllang']) { $contents = str_replace("<html", "<html xml:lang=\"".$lang->settings['htmllang']."\" lang=\"".$lang->settings['htmllang']."\"", $contents);
}	}
if($error_handler->warnings) { $contents = str_replace("<body>", "<body>\n".$error_handler->show_warnings(), $contents); }	if($error_handler->warnings) { $contents = str_replace("<body>", "<body>\n".$error_handler->show_warnings(), $contents); }

return $contents; }	return $contents; }
Zeile 322	Zeile 333
// If the stamp isn't set, use TIME_NOW if(empty($stamp))	// If the stamp isn't set, use TIME_NOW if(empty($stamp))
{	{
$stamp = TIME_NOW; }	$stamp = TIME_NOW; }
Zeile 334	Zeile 345
$dstcorrection = $mybb->user['dst']; } elseif(defined("IN_ADMINCP"))	$dstcorrection = $mybb->user['dst']; } elseif(defined("IN_ADMINCP"))
{	{
$offset = $mybbadmin['timezone']; $dstcorrection = $mybbadmin['dst'];	$offset = $mybbadmin['timezone']; $dstcorrection = $mybbadmin['dst'];
}	}
else { $offset = $mybb->settings['timezoneoffset'];	else { $offset = $mybb->settings['timezoneoffset'];
Zeile 346	Zeile 357
// If DST correction is enabled, add an additional hour to the timezone. if($dstcorrection == 1)	// If DST correction is enabled, add an additional hour to the timezone. if($dstcorrection == 1)
{	{
++$offset; if(my_substr($offset, 0, 1) != "-") {	++$offset; if(my_substr($offset, 0, 1) != "-") {
Zeile 359	Zeile 370
{ $offset = 0; }	{ $offset = 0; }

if($adodb == true && function_exists('adodb_date'))	if($adodb == true && function_exists('adodb_date'))
{	{
$date = adodb_date($format, $stamp + ($offset * 3600));	$date = adodb_date($format, $stamp + ($offset * 3600));
}	}
else { $date = gmdate($format, $stamp + ($offset * 3600)); }	else { $date = gmdate($format, $stamp + ($offset * 3600)); }

if($mybb->settings['dateformat'] == $format && $ty) { $stamp = TIME_NOW;	if($mybb->settings['dateformat'] == $format && $ty) { $stamp = TIME_NOW;

if($adodb == true && function_exists('adodb_date')) { $todaysdate = adodb_date($format, $stamp + ($offset * 3600));	if($adodb == true && function_exists('adodb_date')) { $todaysdate = adodb_date($format, $stamp + ($offset * 3600));
Zeile 419	Zeile 430
{ global $mybb; static $mail;	{ global $mybb; static $mail;

// Does our object not exist? Create it if(!is_object($mail)) { require_once MYBB_ROOT."inc/class_mailhandler.php";	// Does our object not exist? Create it if(!is_object($mail)) { require_once MYBB_ROOT."inc/class_mailhandler.php";

if($mybb->settings['mail_handler'] == 'smtp')	if($mybb->settings['mail_handler'] == 'smtp')
{	{
require_once MYBB_ROOT."inc/mailhandlers/smtp.php"; $mail = new SmtpMail();	require_once MYBB_ROOT."inc/mailhandlers/smtp.php"; $mail = new SmtpMail();
}	}
else { require_once MYBB_ROOT."inc/mailhandlers/php.php"; $mail = new PhpMail(); } }	else { require_once MYBB_ROOT."inc/mailhandlers/php.php"; $mail = new PhpMail(); } }

// Using SMTP based mail if($mybb->settings['mail_handler'] == 'smtp') {	// Using SMTP based mail if($mybb->settings['mail_handler'] == 'smtp') {
Zeile 445	Zeile 456
$mail->keep_alive = true; } }	$mail->keep_alive = true; } }

// Using PHP based mail() else { if($mybb->settings['mail_parameters'] != '')	// Using PHP based mail() else { if($mybb->settings['mail_parameters'] != '')
{	{
$mail->additional_parameters = $mybb->settings['mail_parameters']; } }	$mail->additional_parameters = $mybb->settings['mail_parameters']; } }

// Build and send $mail->build_message($to, $subject, $message, $from, $charset, $headers, $format, $message_text, $return_email); return $mail->send();	// Build and send $mail->build_message($to, $subject, $message, $from, $charset, $headers, $format, $message_text, $return_email); return $mail->send();
Zeile 467	Zeile 478
*/ function generate_post_check() {	*/ function generate_post_check() {
global $mybb;	global $mybb, $session;
if($mybb->user['uid'])	if($mybb->user['uid'])
{	{
return md5($mybb->user['loginkey'].$mybb->user['salt'].$mybb->user['regdate']); } // Guests get a special string	return md5($mybb->user['loginkey'].$mybb->user['salt'].$mybb->user['regdate']); } // Guests get a special string
else { return md5($mybb->settings['bburl'].$mybb->config['database']['username'].$mybb->settings['internal']['encryption_key']);	else { return md5($session->useragent.$mybb->config['database']['username'].$mybb->settings['internal']['encryption_key']);
} }	} }
Zeile 499	Zeile 510
if(defined("IN_ADMINCP")) { return false;	if(defined("IN_ADMINCP")) { return false;
}	}
else { error($lang->invalid_post_code);	else { error($lang->invalid_post_code);
Zeile 522	Zeile 533
{ global $forum_cache; static $forumarraycache;	{ global $forum_cache; static $forumarraycache;

if($forumarraycache[$fid]) { return $forumarraycache[$fid]['parentlist'];	if($forumarraycache[$fid]) { return $forumarraycache[$fid]['parentlist'];
Zeile 546	Zeile 557
* @param string The joiner for each forum for querying (OR \| AND \| etc) * @param string The parent list of the forum - if you have it * @return string The query string generated	* @param string The joiner for each forum for querying (OR \| AND \| etc) * @param string The parent list of the forum - if you have it * @return string The query string generated
*/	*/
function build_parent_list($fid, $column="fid", $joiner="OR", $parentlist="") { if(!$parentlist)	function build_parent_list($fid, $column="fid", $joiner="OR", $parentlist="") { if(!$parentlist)
Zeile 577	Zeile 588
function cache_forums($force=false) { global $forum_cache, $cache;	function cache_forums($force=false) { global $forum_cache, $cache;

if($force == true) { $forum_cache = $cache->read("forums", 1); return $forum_cache;	if($force == true) { $forum_cache = $cache->read("forums", 1); return $forum_cache;
}	}
if(!$forum_cache) { $forum_cache = $cache->read("forums");	if(!$forum_cache) { $forum_cache = $cache->read("forums");
Zeile 595	Zeile 606
} return $forum_cache; }	} return $forum_cache; }

/** * Generate an array of all child and descendant forums for a specific forum. *	/** * Generate an array of all child and descendant forums for a specific forum. *
Zeile 619	Zeile 630
} } if(!is_array($forums_by_parent[$fid]))	} } if(!is_array($forums_by_parent[$fid]))
{	{
return; }	return; }

foreach($forums_by_parent[$fid] as $forum) { $forums[] = $forum['fid'];	foreach($forums_by_parent[$fid] as $forum) { $forums[] = $forum['fid'];
Zeile 642	Zeile 653
* @param string The title of the message shown in the title of the page and the error table */ function error($error="", $title="")	* @param string The title of the message shown in the title of the page and the error table */ function error($error="", $title="")
{	{
global $header, $footer, $theme, $headerinclude, $db, $templates, $lang, $mybb, $plugins;	global $header, $footer, $theme, $headerinclude, $db, $templates, $lang, $mybb, $plugins;

$error = $plugins->run_hooks("error", $error); if(!$error)	$error = $plugins->run_hooks("error", $error); if(!$error)
{	{
$error = $lang->unknown_error;	$error = $lang->unknown_error;
} // AJAX error message? if($mybb->input['ajax']) { // Send our headers.	} // AJAX error message? if($mybb->input['ajax']) { // Send our headers.
@header("Content-type: text/html; charset={$lang->settings['charset']}"); echo "<error>{$error}</error>\n"; exit;	@header("Content-type: text/html; charset={$lang->settings['charset']}"); echo "<error>{$error}</error>\n"; exit;
Zeile 689	Zeile 700
if(!$title) { $title = $lang->please_correct_errors;	if(!$title) { $title = $lang->please_correct_errors;
}	}
if(!is_array($errors)) { $errors = array($errors);	if(!is_array($errors)) { $errors = array($errors);
Zeile 714	Zeile 725
eval("\$errors = \"".$templates->get("error_inline")."\";"); return $errors;	eval("\$errors = \"".$templates->get("error_inline")."\";"); return $errors;
} /**	} /**
* Presents the user with a "no permission" page */ function error_no_permission()	* Presents the user with a "no permission" page */ function error_no_permission()
Zeile 739	Zeile 750
// Send our headers. header("Content-type: text/html; charset={$lang->settings['charset']}"); echo "<error>{$lang->error_nopermission_user_ajax}</error>\n";	// Send our headers. header("Content-type: text/html; charset={$lang->settings['charset']}"); echo "<error>{$lang->error_nopermission_user_ajax}</error>\n";
exit; }	exit; }
if($mybb->user['uid'])	if($mybb->user['uid'])
{	{
$lang->error_nopermission_user_username = $lang->sprintf($lang->error_nopermission_user_username, $mybb->user['username']); eval("\$errorpage = \"".$templates->get("error_nopermission_loggedin")."\";"); }	$lang->error_nopermission_user_username = $lang->sprintf($lang->error_nopermission_user_username, $mybb->user['username']); eval("\$errorpage = \"".$templates->get("error_nopermission_loggedin")."\";"); }
Zeile 752	Zeile 763
// Redirect to where the user came from $redirect_url = $_SERVER['PHP_SELF']; if($_SERVER['QUERY_STRING'])	// Redirect to where the user came from $redirect_url = $_SERVER['PHP_SELF']; if($_SERVER['QUERY_STRING'])
{	{
$redirect_url .= '?'.$_SERVER['QUERY_STRING']; }	$redirect_url .= '?'.$_SERVER['QUERY_STRING']; }

$redirect_url = htmlspecialchars_uni($redirect_url);	$redirect_url = htmlspecialchars_uni($redirect_url);

switch($mybb->settings['username_method']) { case 0:	switch($mybb->settings['username_method']) { case 0:
Zeile 765	Zeile 776
break; case 1: $lang_username = $lang->username1;	break; case 1: $lang_username = $lang->username1;
break;	break;
case 2: $lang_username = $lang->username2; break;	case 2: $lang_username = $lang->username2; break;
Zeile 790	Zeile 801
global $header, $footer, $mybb, $theme, $headerinclude, $templates, $lang, $plugins; $redirect_args = array('url' => &$url, 'message' => &$message, 'title' => &$title);	global $header, $footer, $mybb, $theme, $headerinclude, $templates, $lang, $plugins; $redirect_args = array('url' => &$url, 'message' => &$message, 'title' => &$title);

$plugins->run_hooks("redirect", $redirect_args); if($mybb->input['ajax'])	$plugins->run_hooks("redirect", $redirect_args); if($mybb->input['ajax'])
Zeile 813	Zeile 824
if(!$message) { $message = $lang->redirect;	if(!$message) { $message = $lang->redirect;
}	}
$time = TIME_NOW; $timenow = my_date($mybb->settings['dateformat'], $time) . " " . my_date($mybb->settings['timeformat'], $time);	$time = TIME_NOW; $timenow = my_date($mybb->settings['dateformat'], $time) . " " . my_date($mybb->settings['timeformat'], $time);
Zeile 822	Zeile 833
{ $title = $mybb->settings['bbname']; }	{ $title = $mybb->settings['bbname']; }

// Show redirects only if both ACP and UCP settings are enabled, or ACP is enabled, and user is a guest. if($mybb->settings['redirects'] == 1 && ($mybb->user['showredirect'] != 0 \|\| !$mybb->user['uid'])) { $url = str_replace("&", "&", $url); $url = htmlspecialchars_uni($url);	// Show redirects only if both ACP and UCP settings are enabled, or ACP is enabled, and user is a guest. if($mybb->settings['redirects'] == 1 && ($mybb->user['showredirect'] != 0 \|\| !$mybb->user['uid'])) { $url = str_replace("&", "&", $url); $url = htmlspecialchars_uni($url);

eval("\$redirectpage = \"".$templates->get("redirect")."\";"); output_page($redirectpage); }	eval("\$redirectpage = \"".$templates->get("redirect")."\";"); output_page($redirectpage); }
Zeile 838	Zeile 849
$url = str_replace(array("\n","\r",";"), "", $url); run_shutdown();	$url = str_replace(array("\n","\r",";"), "", $url); run_shutdown();

if(my_substr($url, 0, 7) !== 'http://' && my_substr($url, 0, 8) !== 'https://' && my_substr($url, 0, 1) !== '/') { header("Location: {$mybb->settings['bburl']}/{$url}");	if(my_substr($url, 0, 7) !== 'http://' && my_substr($url, 0, 8) !== 'https://' && my_substr($url, 0, 1) !== '/') { header("Location: {$mybb->settings['bburl']}/{$url}");
}	}
else { header("Location: {$url}");	else { header("Location: {$url}");
Zeile 869	Zeile 880
{ return; }	{ return; }

$url = str_replace("&", "&", $url); $url = htmlspecialchars_uni($url);	$url = str_replace("&", "&", $url); $url = htmlspecialchars_uni($url);
Zeile 967	Zeile 978
} $lang->multipage_pages = $lang->sprintf($lang->multipage_pages, $pages);	} $lang->multipage_pages = $lang->sprintf($lang->multipage_pages, $pages);

if($breadcrumb == true) { eval("\$multipage = \"".$templates->get("multipage_breadcrumb")."\";");	if($breadcrumb == true) { eval("\$multipage = \"".$templates->get("multipage_breadcrumb")."\";");
Zeile 975	Zeile 986
else { eval("\$multipage = \"".$templates->get("multipage")."\";");	else { eval("\$multipage = \"".$templates->get("multipage")."\";");
}	}
return $multipage; }	return $multipage; }
Zeile 989	Zeile 1000
function fetch_page_url($url, $page) { if($page <= 1)	function fetch_page_url($url, $page) { if($page <= 1)
{	{
$find = array( "-page-{page}", "&page={page}",	$find = array( "-page-{page}", "&page={page}",
Zeile 1001	Zeile 1012
return $url; } else if(strpos($url, "{page}") === false)	return $url; } else if(strpos($url, "{page}") === false)
{	{
// If no page identifier is specified we tack it on to the end of the URL if(strpos($url, "?") === false)	// If no page identifier is specified we tack it on to the end of the URL if(strpos($url, "?") === false)
{	{
$url .= "?";	$url .= "?";
}	}
else { $url .= "&";	else { $url .= "&";
}	}
$url .= "page=$page";	$url .= "page=$page";
}	}
else { $url = str_replace("{page}", $page, $url); }	else { $url = str_replace("{page}", $page, $url); }

return $url;	return $url;
} /**	} /**
* Fetch the permissions for a specific user * * @param int The user ID	* Fetch the permissions for a specific user * * @param int The user ID
Zeile 1077	Zeile 1088
function usergroup_permissions($gid=0) { global $cache, $groupscache, $grouppermignore, $groupzerogreater;	function usergroup_permissions($gid=0) { global $cache, $groupscache, $grouppermignore, $groupzerogreater;

if(!is_array($groupscache))	if(!is_array($groupscache))
{	{
$groupscache = $cache->read("usergroups");	$groupscache = $cache->read("usergroups");
} $groups = explode(",", $gid);	} $groups = explode(",", $gid);
if(count($groups) == 1)	if(count($groups) == 1)
{	{
return $groupscache[$gid];	return $groupscache[$gid];
} foreach($groups as $gid) {	} foreach($groups as $gid) {
if(trim($gid) == "" \|\| !$groupscache[$gid]) { continue;	if(trim($gid) == "" \|\| !$groupscache[$gid]) { continue;
Zeile 1116	Zeile 1127
{ $usergroup[$perm] = 0; continue;	{ $usergroup[$perm] = 0; continue;
}	}
if($access > $permbit \|\| ($access == "yes" && $permbit == "no") \|\| !$permbit) // Keep yes/no for compatibility? { $usergroup[$perm] = $access;	if($access > $permbit \|\| ($access == "yes" && $permbit == "no") \|\| !$permbit) // Keep yes/no for compatibility? { $usergroup[$perm] = $access;
Zeile 1125	Zeile 1136
} } }	} } }

return $usergroup;	return $usergroup;
}	}
/** * Fetch the display group properties for a specific display group *	/** * Fetch the display group properties for a specific display group *
Zeile 1150	Zeile 1161
foreach($displaygroupfields as $field) { $displaygroup[$field] = $group[$field];	foreach($displaygroupfields as $field) { $displaygroup[$field] = $group[$field];
}	}
return $displaygroup; }	return $displaygroup; }
Zeile 1184	Zeile 1195
$gid = $usercache[$uid]['usergroup'].",".$usercache[$uid]['additionalgroups']; $groupperms = usergroup_permissions($gid);	$gid = $usercache[$uid]['usergroup'].",".$usercache[$uid]['additionalgroups']; $groupperms = usergroup_permissions($gid);
}	}
else { $gid = $mybb->user['usergroup'];	else { $gid = $mybb->user['usergroup'];

if(isset($mybb->user['additionalgroups'])) { $gid .= ",".$mybb->user['additionalgroups']; } $groupperms = $mybb->usergroup;	if(isset($mybb->user['additionalgroups'])) { $gid .= ",".$mybb->user['additionalgroups']; } $groupperms = $mybb->usergroup;
} }	} }
if(!is_array($forum_cache)) { $forum_cache = cache_forums();	if(!is_array($forum_cache)) { $forum_cache = cache_forums();

if(!$forum_cache) { return false;	if(!$forum_cache) { return false;
} }	} }
if(!is_array($fpermcache))	if(!is_array($fpermcache))
{	{
$fpermcache = $cache->read("forumpermissions"); }	$fpermcache = $cache->read("forumpermissions"); }
Zeile 1218	Zeile 1229
if(!$cached_forum_permissions_permissions[$gid][$fid]) { $cached_forum_permissions_permissions[$gid][$fid] = fetch_forum_permissions($fid, $gid, $groupperms);	if(!$cached_forum_permissions_permissions[$gid][$fid]) { $cached_forum_permissions_permissions[$gid][$fid] = fetch_forum_permissions($fid, $gid, $groupperms);
}	}
return $cached_forum_permissions_permissions[$gid][$fid]; } else	return $cached_forum_permissions_permissions[$gid][$fid]; } else
Zeile 1253	Zeile 1264
{ return $groupperms; }	{ return $groupperms; }

$current_permissions = array(); $only_view_own_threads = 1;	$current_permissions = array(); $only_view_own_threads = 1;

foreach($groups as $gid) { if($groupscache[$gid]) { $level_permissions = $fpermcache[$fid][$gid];	foreach($groups as $gid) { if($groupscache[$gid]) { $level_permissions = $fpermcache[$fid][$gid];

// If our permissions arn't inherited we need to figure them out if(empty($level_permissions)) {	// If our permissions arn't inherited we need to figure them out if(empty($level_permissions)) {
Zeile 1278	Zeile 1289
break; } }	break; } }

// If we STILL don't have forum permissions we use the usergroup itself if(empty($level_permissions)) { $level_permissions = $groupscache[$gid];	// If we STILL don't have forum permissions we use the usergroup itself if(empty($level_permissions)) { $level_permissions = $groupscache[$gid];
}	}
} }	} }

foreach($level_permissions as $permission => $access) { if($access >= $current_permissions[$permission] \|\| ($access == "yes" && $current_permissions[$permission] == "no") \|\| !$current_permissions[$permission])	foreach($level_permissions as $permission => $access) { if($access >= $current_permissions[$permission] \|\| ($access == "yes" && $current_permissions[$permission] == "no") \|\| !$current_permissions[$permission])
Zeile 1295	Zeile 1306
} }	} }
if(!$level_permissions["canonlyviewownthreads"])	if($level_permissions["canview"] && !$level_permissions["canonlyviewownthreads"])
{ $only_view_own_threads = 0; }	{ $only_view_own_threads = 0; }
Zeile 1324	Zeile 1335
function check_forum_password($fid, $pid=0) { global $mybb, $header, $footer, $headerinclude, $theme, $templates, $lang, $forum_cache;	function check_forum_password($fid, $pid=0) { global $mybb, $header, $footer, $headerinclude, $theme, $templates, $lang, $forum_cache;

$showform = true;	$showform = true;

if(!is_array($forum_cache)) { $forum_cache = cache_forums();	if(!is_array($forum_cache)) { $forum_cache = cache_forums();
Zeile 1347	Zeile 1358
{ continue; }	{ continue; }

if($forum_cache[$parent_id]['password'] != "") { check_forum_password($parent_id, $fid); } } }	if($forum_cache[$parent_id]['password'] != "") { check_forum_password($parent_id, $fid); } } }

$password = $forum_cache[$fid]['password']; if($password) {	$password = $forum_cache[$fid]['password']; if($password) {
Zeile 1378	Zeile 1389
$showform = true; } else	$showform = true; } else
{	{
$showform = false; } }	$showform = false; } }
Zeile 1399	Zeile 1410
$_SERVER['REQUEST_URI'] = htmlspecialchars_uni($_SERVER['REQUEST_URI']); eval("\$pwform = \"".$templates->get("forumdisplay_password")."\";"); output_page($pwform);	$_SERVER['REQUEST_URI'] = htmlspecialchars_uni($_SERVER['REQUEST_URI']); eval("\$pwform = \"".$templates->get("forumdisplay_password")."\";"); output_page($pwform);
}	}
exit; } }	exit; } }
Zeile 1420	Zeile 1431
if($uid < 1) { $uid = $mybb->user['uid'];	if($uid < 1) { $uid = $mybb->user['uid'];
}	}
if($uid == 0) { return false;	if($uid == 0) { return false;
Zeile 1454	Zeile 1465
} $mod_cache = $cache->read("moderators");	} $mod_cache = $cache->read("moderators");
foreach($mod_cache as $fid => $forum)	foreach($mod_cache as $forumid => $forum)
{	{
if(!is_array($forum) \|\| !in_array($fid, $parentslist)) {	if(!is_array($forum) \|\| !in_array($forumid, $parentslist)) {
// No perms or we're not after this forum continue; }	// No perms or we're not after this forum continue; }
Zeile 1467	Zeile 1478
if(is_array($forum['users'][$uid])) { $perm = $forum['users'][$uid];	if(is_array($forum['users'][$uid])) { $perm = $forum['users'][$uid];
foreach($perm as $action => $value) { if(strpos($action, "can") === false) { continue; }	foreach($perm as $action => $value) { if(strpos($action, "can") === false) { continue; }
// Figure out the user permissions if($value == 0)	// Figure out the user permissions if($value == 0)
Zeile 1483	Zeile 1494
else { $perms[$action] = max($perm[$action], $perms[$action]);	else { $perms[$action] = max($perm[$action], $perms[$action]);
} }	} }
} foreach($groups as $group)	} foreach($groups as $group)
Zeile 1504	Zeile 1515
} $perms[$action] = max($perm[$action], $perms[$action]);	} $perms[$action] = max($perm[$action], $perms[$action]);
} } }	} } }
$modpermscache[$fid][$uid] = $perms; return $perms;	$modpermscache[$fid][$uid] = $perms; return $perms;
Zeile 1529	Zeile 1540
{ $uid = $mybb->user['uid']; }	{ $uid = $mybb->user['uid']; }

if($uid == 0) { return false;	if($uid == 0) { return false;
Zeile 1538	Zeile 1549
$user_perms = user_permissions($uid); if($user_perms['issupermod'] == 1) {	$user_perms = user_permissions($uid); if($user_perms['issupermod'] == 1) {
	if($fid) { $forumpermissions = forum_permissions($fid); if($forumpermissions['canview'] && $forumpermissions['canviewthreads'] && !$forumpermissions['canonlyviewownthreads']) { return true; } return false; }
return true; } else	return true; } else
Zeile 1565	Zeile 1585
else { $modperms = get_moderator_permissions($fid, $uid);	else { $modperms = get_moderator_permissions($fid, $uid);

if(!$action && $modperms) { return true;	if(!$action && $modperms) { return true;
Zeile 1610	Zeile 1630
$posticons[$posticon['name']] = $posticon; } krsort($posticons);	$posticons[$posticon['name']] = $posticon; } krsort($posticons);

foreach($posticons as $dbicon) { $dbicon['path'] = htmlspecialchars_uni($dbicon['path']);	foreach($posticons as $dbicon) { $dbicon['path'] = htmlspecialchars_uni($dbicon['path']);
Zeile 1695	Zeile 1715
{ $cookie .= "; HttpOnly"; }	{ $cookie .= "; HttpOnly"; }

$mybb->cookies[$name] = $value; header($cookie, false);	$mybb->cookies[$name] = $value; header($cookie, false);
Zeile 1709	Zeile 1729
function my_unsetcookie($name) { global $mybb;	function my_unsetcookie($name) { global $mybb;

$expires = -3600; my_setcookie($name, "", $expires);	$expires = -3600; my_setcookie($name, "", $expires);

unset($mybb->cookies[$name]); } /** * Get the contents from a serialised cookie array.	unset($mybb->cookies[$name]); } /** * Get the contents from a serialised cookie array.
*	*
* @param string The cookie identifier. * @param int The cookie content id. * @return array\|boolean The cookie id's content array or false when non-existent.	* @param string The cookie identifier. * @param int The cookie content id. * @return array\|boolean The cookie id's content array or false when non-existent.
Zeile 1726	Zeile 1746
function my_get_array_cookie($name, $id) { global $mybb;	function my_get_array_cookie($name, $id) { global $mybb;

if(!isset($mybb->cookies['mybb'][$name])) { return false;	if(!isset($mybb->cookies['mybb'][$name])) { return false;
Zeile 1739	Zeile 1759
return $cookie[$id]; } else	return $cookie[$id]; } else
{	{
return 0; } }	return 0; } }
Zeile 1750	Zeile 1770
* @param string The cookie identifier. * @param int The cookie content id. * @param string The value to set the cookie to.	* @param string The cookie identifier. * @param int The cookie content id. * @param string The value to set the cookie to.
*/	*/
function my_set_array_cookie($name, $id, $value, $expires="") { global $mybb;	function my_set_array_cookie($name, $id, $value, $expires="") { global $mybb;

$cookie = $mybb->cookies['mybb']; $newcookie = my_unserialize($cookie[$name]); $newcookie[$id] = $value; $newcookie = serialize($newcookie); my_setcookie("mybb[$name]", addslashes($newcookie), $expires);	$cookie = $mybb->cookies['mybb']; $newcookie = my_unserialize($cookie[$name]); $newcookie[$id] = $value; $newcookie = serialize($newcookie); my_setcookie("mybb[$name]", addslashes($newcookie), $expires);

// Make sure our current viarables are up-to-date as well $mybb->cookies['mybb'][$name] = $newcookie; }	// Make sure our current viarables are up-to-date as well $mybb->cookies['mybb'][$name] = $newcookie; }
Zeile 1779	Zeile 1799
if(!is_array($array)) { $array = array();	if(!is_array($array)) { $array = array();
} return $array; }	} return $array; }
/** * Returns the serverload of the system.	/** * Returns the serverload of the system.
Zeile 1794	Zeile 1814
global $lang; $serverload = array();	global $lang; $serverload = array();

// DIRECTORY_SEPARATOR checks if running windows if(DIRECTORY_SEPARATOR != '\\') {	// DIRECTORY_SEPARATOR checks if running windows if(DIRECTORY_SEPARATOR != '\\') {
Zeile 1802	Zeile 1822
{ // sys_getloadavg() will return an array with [0] being load within the last minute. $serverload = sys_getloadavg();	{ // sys_getloadavg() will return an array with [0] being load within the last minute. $serverload = sys_getloadavg();
$serverload[0] = round($serverload[0], 4);	$serverload[0] = round($serverload[0], 4);
} else if(@file_exists("/proc/loadavg") && $load = @file_get_contents("/proc/loadavg")) {	} else if(@file_exists("/proc/loadavg") && $load = @file_get_contents("/proc/loadavg")) {
Zeile 1815	Zeile 1835
{ return $lang->unknown; }	{ return $lang->unknown; }

// Suhosin likes to throw a warning if exec is disabled then die - weird if($func_blacklist = @ini_get('suhosin.executor.func.blacklist')) {	// Suhosin likes to throw a warning if exec is disabled then die - weird if($func_blacklist = @ini_get('suhosin.executor.func.blacklist')) {
Zeile 1891	Zeile 1911
if(substr($changes[$counter], 0, 1) == "+" \|\| substr($changes[$counter], 0, 1) == "-") { if(intval($changes[$counter]) != 0)	if(substr($changes[$counter], 0, 1) == "+" \|\| substr($changes[$counter], 0, 1) == "-") { if(intval($changes[$counter]) != 0)
{	{
$new_stats[$counter] = $stats[$counter] + $changes[$counter]; } }	$new_stats[$counter] = $stats[$counter] + $changes[$counter]; } }
Zeile 1905	Zeile 1925
$new_stats[$counter] = 0; } }	$new_stats[$counter] = 0; } }
}	}
// Fetch latest user if the user count is changing if(array_key_exists('numusers', $changes)) {	// Fetch latest user if the user count is changing if(array_key_exists('numusers', $changes)) {
$query = $db->simple_select("users", "uid, username", "", array('order_by' => 'uid', 'order_dir' => 'DESC', 'limit' => 1));	$query = $db->simple_select("users", "uid, username", "", array('order_by' => 'regdate', 'order_dir' => 'DESC', 'limit' => 1));
$lastmember = $db->fetch_array($query); $new_stats['lastuid'] = $lastmember['uid']; $new_stats['lastusername'] = $lastmember['username'];	$lastmember = $db->fetch_array($query); $new_stats['lastuid'] = $lastmember['uid']; $new_stats['lastusername'] = $lastmember['username'];
}	}
if(empty($new_stats)) { return; }	if(empty($new_stats)) { return; }

if(is_array($stats)) { $stats = array_merge($stats, $new_stats);	if(is_array($stats)) { $stats = array_merge($stats, $new_stats);
Zeile 1938	Zeile 1958
"numposts" => $stats['numposts'] ); $db->replace_query("stats", $todays_stats, "dateline");	"numposts" => $stats['numposts'] ); $db->replace_query("stats", $todays_stats, "dateline");

$cache->update("stats", $stats, "dateline"); }	$cache->update("stats", $stats, "dateline"); }
Zeile 1952	Zeile 1972
{ global $db, $cache;	{ global $db, $cache;
$update_query = array();	$update_query = array();
$counters = array('threads','unapprovedthreads','posts','unapprovedposts'); // Fetch above counters for this forum	$counters = array('threads','unapprovedthreads','posts','unapprovedposts'); // Fetch above counters for this forum
Zeile 1970	Zeile 1990
$update_query[$counter] = $forum[$counter] + $changes[$counter]; } else	$update_query[$counter] = $forum[$counter] + $changes[$counter]; } else
{	{
$update_query[$counter] = $changes[$counter];	$update_query[$counter] = $changes[$counter];
}	}
// Less than 0? That's bad	// Less than 0? That's bad
if(!$update_query[$counter])	if($update_query[$counter] < 0)
{ $update_query[$counter] = 0; }	{ $update_query[$counter] = 0; }
} }	} }
// Only update if we're actually doing something if(count($update_query) > 0) {	// Only update if we're actually doing something if(count($update_query) > 0) {
Zeile 1989	Zeile 2009
} // Guess we should update the statistics too?	} // Guess we should update the statistics too?
if(isset($update_query['threads']) \|\| isset($update_query['posts']) \|\| isset($update_query['unapprovedthreads']) \|\| isset($update_query['unapprovedposts'])) { $new_stats = array(); if(array_key_exists('threads', $update_query))	$new_stats = array(); if(array_key_exists('threads', $update_query)) { $threads_diff = $update_query['threads'] - $forum['threads']; if($threads_diff > -1) { $new_stats['numthreads'] = "+{$threads_diff}"; } else { $new_stats['numthreads'] = "{$threads_diff}"; } } if(array_key_exists('unapprovedthreads', $update_query)) { $unapprovedthreads_diff = $update_query['unapprovedthreads'] - $forum['unapprovedthreads']; if($unapprovedthreads_diff > -1) { $new_stats['numunapprovedthreads'] = "+{$unapprovedthreads_diff}"; } else { $new_stats['numunapprovedthreads'] = "{$unapprovedthreads_diff}"; } } if(array_key_exists('posts', $update_query)) { $posts_diff = $update_query['posts'] - $forum['posts']; if($posts_diff > -1) { $new_stats['numposts'] = "+{$posts_diff}"; } else
{	{
$threads_diff = $update_query['threads'] - $forum['threads']; if($threads_diff > -1) { $new_stats['numthreads'] = "+{$threads_diff}"; } else { $new_stats['numthreads'] = "{$threads_diff}"; }	$new_stats['numposts'] = "{$posts_diff}";
}	}
if(array_key_exists('unapprovedthreads', $update_query))	} if(array_key_exists('unapprovedposts', $update_query)) { $unapprovedposts_diff = $update_query['unapprovedposts'] - $forum['unapprovedposts']; if($unapprovedposts_diff > -1)
{	{
$unapprovedthreads_diff = $update_query['unapprovedthreads'] - $forum['unapprovedthreads']; if($unapprovedthreads_diff > -1) { $new_stats['numunapprovedthreads'] = "+{$unapprovedthreads_diff}"; } else { $new_stats['numunapprovedthreads'] = "{$unapprovedthreads_diff}"; }	$new_stats['numunapprovedposts'] = "+{$unapprovedposts_diff}";
}	}
if(array_key_exists('posts', $update_query))	else
{	{
$posts_diff = $update_query['posts'] - $forum['posts']; if($posts_diff > -1) { $new_stats['numposts'] = "+{$posts_diff}"; } else { $new_stats['numposts'] = "{$posts_diff}"; } } if(array_key_exists('unapprovedposts', $update_query)) { $unapprovedposts_diff = $update_query['unapprovedposts'] - $forum['unapprovedposts']; if($unapprovedposts_diff > -1) { $new_stats['numunapprovedposts'] = "+{$unapprovedposts_diff}"; } else { $new_stats['numunapprovedposts'] = "{$unapprovedposts_diff}"; }	$new_stats['numunapprovedposts'] = "{$unapprovedposts_diff}";
}	}
	} if(!empty($new_stats)) {
update_stats($new_stats); }	update_stats($new_stats); }

// Update last post info update_forum_lastpost($fid);	// Update last post info update_forum_lastpost($fid);

$cache->update_forums(); }	$cache->update_forums(); }
Zeile 2093	Zeile 2114
global $db; $update_query = array();	global $db; $update_query = array();

$counters = array('replies','unapprovedposts','attachmentcount', 'attachmentcount');	$counters = array('replies','unapprovedposts','attachmentcount', 'attachmentcount');

// Fetch above counters for this thread $query = $db->simple_select("threads", implode(",", $counters), "tid='{$tid}'"); $thread = $db->fetch_array($query);	// Fetch above counters for this thread $query = $db->simple_select("threads", implode(",", $counters), "tid='{$tid}'"); $thread = $db->fetch_array($query);

foreach($counters as $counter) { if(array_key_exists($counter, $changes))	foreach($counters as $counter) { if(array_key_exists($counter, $changes))
Zeile 2113	Zeile 2134
{ $update_query[$counter] = $changes[$counter]; }	{ $update_query[$counter] = $changes[$counter]; }

// Less than 0? That's bad if($update_query[$counter] < 0) {	// Less than 0? That's bad if($update_query[$counter] < 0) {
Zeile 2121	Zeile 2142
} } }	} } }

$db->free_result($query); // Only update if we're actually doing something	$db->free_result($query); // Only update if we're actually doing something
Zeile 2129	Zeile 2150
{ $db->update_query("threads", $update_query, "tid='".intval($tid)."'"); }	{ $db->update_query("threads", $update_query, "tid='".intval($tid)."'"); }

unset($update_query, $thread); update_thread_data($tid);	unset($update_query, $thread); update_thread_data($tid);
Zeile 2150	Zeile 2171
if(strpos($thread['closed'], 'moved\|') !== false) { return false;	if(strpos($thread['closed'], 'moved\|') !== false) { return false;
}	}
$query = $db->query(" SELECT u.uid, u.username, p.username AS postusername, p.dateline FROM ".TABLE_PREFIX."posts p	$query = $db->query(" SELECT u.uid, u.username, p.username AS postusername, p.dateline FROM ".TABLE_PREFIX."posts p
Zeile 2161	Zeile 2182
LIMIT 1" ); $lastpost = $db->fetch_array($query);	LIMIT 1" ); $lastpost = $db->fetch_array($query);

$db->free_result($query);	$db->free_result($query);

$query = $db->query(" SELECT u.uid, u.username, p.username AS postusername, p.dateline FROM ".TABLE_PREFIX."posts p	$query = $db->query(" SELECT u.uid, u.username, p.username AS postusername, p.dateline FROM ".TABLE_PREFIX."posts p
Zeile 2173	Zeile 2194
LIMIT 1 "); $firstpost = $db->fetch_array($query);	LIMIT 1 "); $firstpost = $db->fetch_array($query);
$db->free_result($query);	$db->free_result($query);
if(!$firstpost['username']) {	if(!$firstpost['username']) {
Zeile 2205	Zeile 2226
'lastposteruid' => intval($lastpost['uid']), ); $db->update_query("threads", $update_array, "tid='{$tid}'");	'lastposteruid' => intval($lastpost['uid']), ); $db->update_query("threads", $update_array, "tid='{$tid}'");

unset($firstpost, $lastpost, $update_array);	unset($firstpost, $lastpost, $update_array);
}	}
function update_forum_count($fid)	function update_forum_count($fid)
{	{
die("Deprecated function call: update_forum_count");	die("Deprecated function call: update_forum_count");
}	}
function update_thread_count($tid) { die("Deprecated function call: update_thread_count"); } function update_thread_attachment_count($tid)	function update_thread_count($tid) { die("Deprecated function call: update_thread_count"); } function update_thread_attachment_count($tid)
{	{
die("Deprecated function call: update_thread_attachment_count"); }	die("Deprecated function call: update_thread_attachment_count"); }
Zeile 2238	Zeile 2259
} return $moderation->delete_thread($tid);	} return $moderation->delete_thread($tid);
}	}
/** * Deletes a post from the database	/** * Deletes a post from the database
Zeile 2279	Zeile 2300
$jumpsel['default'] = ''; if($permissions)	$jumpsel['default'] = ''; if($permissions)
{	{
$permissions = $mybb->usergroup; }	$permissions = $mybb->usergroup; }
Zeile 2300	Zeile 2321
} if(!is_array($permissioncache))	} if(!is_array($permissioncache))
{	{
$permissioncache = forum_permissions(); }	$permissioncache = forum_permissions(); }
Zeile 2321	Zeile 2342
$optionselected = "selected=\"selected\""; $selecteddone = 1; }	$optionselected = "selected=\"selected\""; $selecteddone = 1; }

$forum['name'] = htmlspecialchars_uni(strip_tags($forum['name'])); eval("\$forumjumpbits .= \"".$templates->get("forumjump_bit")."\";");	$forum['name'] = htmlspecialchars_uni(strip_tags($forum['name'])); eval("\$forumjumpbits .= \"".$templates->get("forumjump_bit")."\";");
Zeile 2492	Zeile 2513
"editor_color" ); $editor_language = "var editor_language = {\n";	"editor_color" ); $editor_language = "var editor_language = {\n";

$editor_lang_strings = $plugins->run_hooks("mycode_add_codebuttons", $editor_lang_strings); foreach($editor_lang_strings as $key => $lang_string)	$editor_lang_strings = $plugins->run_hooks("mycode_add_codebuttons", $editor_lang_strings); foreach($editor_lang_strings as $key => $lang_string)
Zeile 2522	Zeile 2543
eval("\$codeinsert = \"".$templates->get("codebuttons")."\";"); } }	eval("\$codeinsert = \"".$templates->get("codebuttons")."\";"); } }

return $codeinsert; }	return $codeinsert; }
Zeile 2541	Zeile 2562
{ $smilie_cache = $cache->read("smilies"); $smiliecount = count($smilie_cache);	{ $smilie_cache = $cache->read("smilies"); $smiliecount = count($smilie_cache);
}	}
if(!$smiliecache) { if(!is_array($smilie_cache))	if(!$smiliecache) { if(!is_array($smilie_cache))
Zeile 2573	Zeile 2594
{ $smiliecount = $mybb->settings['smilieinsertertot']; eval("\$getmore = \"".$templates->get("smilieinsert_getmore")."\";");	{ $smiliecount = $mybb->settings['smilieinsertertot']; eval("\$getmore = \"".$templates->get("smilieinsert_getmore")."\";");
}	}
$smilies = ""; $counter = 0; $i = 0;	$smilies = ""; $counter = 0; $i = 0;
Zeile 2586	Zeile 2607
if($counter == 0) { $smilies .= "<tr>\n";	if($counter == 0) { $smilies .= "<tr>\n";
}	}
$find = htmlspecialchars_uni($find); $smilies .= "<td style=\"text-align: center\"><img src=\"{$image}\" border=\"0\" class=\"smilie\" alt=\"{$find}\" /></td>\n"; ++$i;	$find = htmlspecialchars_uni($find); $smilies .= "<td style=\"text-align: center\"><img src=\"{$image}\" border=\"0\" class=\"smilie\" alt=\"{$find}\" /></td>\n"; ++$i;
Zeile 2599	Zeile 2620
$smilies .= "</tr>\n"; } }	$smilies .= "</tr>\n"; } }
}	}
if($counter != 0) {	if($counter != 0) {
Zeile 2624	Zeile 2645
/** * Builds thread prefixes and returns a selected prefix (or all)	/** * Builds thread prefixes and returns a selected prefix (or all)
*	*
* @param int The prefix ID (0 to return all) * @return array The thread prefix's values (or all thread prefixes) */	* @param int The prefix ID (0 to return all) * @return array The thread prefix's values (or all thread prefixes) */
Zeile 2676	Zeile 2697
/** * Build the thread prefix selection menu	/** * Build the thread prefix selection menu
*	*
* @param mixed The forum ID (integer ID or string all) * @param mixed The selected prefix ID (integer ID or string any) * @return string The thread prefix selection menu	* @param mixed The forum ID (integer ID or string all) * @param mixed The selected prefix ID (integer ID or string any) * @return string The thread prefix selection menu
Zeile 2684	Zeile 2705
function build_prefix_select($fid, $selected_pid=0, $multiple=0) { global $cache, $db, $lang, $mybb;	function build_prefix_select($fid, $selected_pid=0, $multiple=0) { global $cache, $db, $lang, $mybb;

if($fid != 'all') { $fid = intval($fid);	if($fid != 'all') { $fid = intval($fid);
Zeile 2749	Zeile 2770
} $prefixselect = "";	} $prefixselect = "";
$multipleselect = "";
if($multiple != 0) {	if($multiple != 0) {
$multipleselect = " multiple=\"multiple\" size=\"5\"";	$prefixselect = "<select name=\"threadprefix[]\" multiple=\"multiple\" size=\"5\">\n"; } else { $prefixselect = "<select name=\"threadprefix\">\n";
}	}
$prefixselect = "<select name=\"threadprefix\"{$multipleselect}>\n";
if($multiple == 1) {	if($multiple == 1) {
Zeile 2763	Zeile 2785
if($selected_pid == 'any') { $any_selected = " selected=\"selected\"";	if($selected_pid == 'any') { $any_selected = " selected=\"selected\"";
}	}
$prefixselect .= "<option value=\"any\"".$any_selected.">".$lang->any_prefix."</option>\n"; }	$prefixselect .= "<option value=\"any\"".$any_selected.">".$lang->any_prefix."</option>\n"; }
Zeile 2772	Zeile 2794
if((intval($selected_pid) == 0) && $selected_pid != 'any') { $default_selected = " selected=\"selected\"";	if((intval($selected_pid) == 0) && $selected_pid != 'any') { $default_selected = " selected=\"selected\"";
}	}
$prefixselect .= "<option value=\"0\"".$default_selected.">".$lang->no_prefix."</option>\n"; foreach($prefixes as $prefix) { $selected = ""; if($prefix['pid'] == $selected_pid)	$prefixselect .= "<option value=\"0\"".$default_selected.">".$lang->no_prefix."</option>\n"; foreach($prefixes as $prefix) { $selected = ""; if($prefix['pid'] == $selected_pid)
{	{
$selected = " selected=\"selected\""; }	$selected = " selected=\"selected\""; }
Zeile 2806	Zeile 2828
$httpaccept_encoding = ''; if(isset($_SERVER['HTTP_ACCEPT_ENCODING']))	$httpaccept_encoding = ''; if(isset($_SERVER['HTTP_ACCEPT_ENCODING']))
{	{
$httpaccept_encoding = $_SERVER['HTTP_ACCEPT_ENCODING']; }	$httpaccept_encoding = $_SERVER['HTTP_ACCEPT_ENCODING']; }
Zeile 2823	Zeile 2845
if(isset($encoding)) { header("Content-Encoding: $encoding");	if(isset($encoding)) { header("Content-Encoding: $encoding");

if(function_exists("gzencode")) { $contents = gzencode($contents, $level);	if(function_exists("gzencode")) { $contents = gzencode($contents, $level);
Zeile 2971	Zeile 2993
*/ function get_ip() {	*/ function get_ip() {
global $mybb, $plugins;	global $mybb, $plugins;

$ip = 0;	$ip = 0;

if(!preg_match("#^(10\|172\.16\|192\.168)\.#", $_SERVER['REMOTE_ADDR'])) { $ip = $_SERVER['REMOTE_ADDR']; } if($mybb->settings['ip_forwarded_check']) { if(isset($_SERVER['HTTP_X_FORWARDED_FOR'])) { preg_match_all("#[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}#s", $_SERVER['HTTP_X_FORWARDED_FOR'], $addresses); } elseif(isset($_SERVER['HTTP_X_REAL_IP'])) { preg_match_all("#[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}#s", $_SERVER['HTTP_X_REAL_IP'], $addresses); }	if(!preg_match("#^(10\|172\.(1[6-9]\|2[0-9]\|3[0-1])\|192\.168)\.#", $_SERVER['REMOTE_ADDR'])) { $ip = $_SERVER['REMOTE_ADDR']; } if($mybb->settings['ip_forwarded_check']) { if(isset($_SERVER['HTTP_X_FORWARDED_FOR'])) { preg_match_all("#[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}#s", $_SERVER['HTTP_X_FORWARDED_FOR'], $addresses); } elseif(isset($_SERVER['HTTP_X_REAL_IP'])) { preg_match_all("#[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}#s", $_SERVER['HTTP_X_REAL_IP'], $addresses); }
if(is_array($addresses[0])) { foreach($addresses[0] as $key => $val) {	if(is_array($addresses[0])) { foreach($addresses[0] as $key => $val) {
if(!preg_match("#^(10\|172\.16\|192\.168)\.#", $val))	if(!preg_match("#^(10\|172\.(1[6-9]\|2[0-9]\|3[0-1])\|192\.168)\.#", $val))
{ $ip = $val; break; }	{ $ip = $val; break; }
} } } if(!$ip) { if(isset($_SERVER['HTTP_CLIENT_IP'])) { $ip = $_SERVER['HTTP_CLIENT_IP']; } }	} } } if(!$ip) { if(isset($_SERVER['HTTP_CLIENT_IP'])) { $ip = $_SERVER['HTTP_CLIENT_IP']; } }

if($plugins) { $ip_array = array("ip" => &$ip); // Used for backwards compatibility on this hook with the updated run_hooks() function. $plugins->run_hooks("get_ip", $ip_array); }	if($plugins) { $ip_array = array("ip" => &$ip); // Used for backwards compatibility on this hook with the updated run_hooks() function. $plugins->run_hooks("get_ip", $ip_array); }

return $ip;	return $ip;
} /**	} /**
Zeile 3030	Zeile 3052
function get_friendly_size($size) { global $lang;	function get_friendly_size($size) { global $lang;

if(!is_numeric($size)) { return $lang->na; }	if(!is_numeric($size)) { return $lang->na; }

// Yottabyte (1024 Zettabytes) if($size >= 1208925819614629174706176) {	// Yottabyte (1024 Zettabytes) if($size >= 1208925819614629174706176) {
Zeile 3079	Zeile 3101
elseif($size == 0) { $size = "0 ".$lang->size_bytes;	elseif($size == 0) { $size = "0 ".$lang->size_bytes;
}	}
else { $size = my_number_format($size)." ".$lang->size_bytes;	else { $size = my_number_format($size)." ".$lang->size_bytes;
Zeile 3099	Zeile 3121
global $cache, $attachtypes, $theme; if(!$attachtypes)	global $cache, $attachtypes, $theme; if(!$attachtypes)
{	{
$attachtypes = $cache->read("attachtypes"); }	$attachtypes = $cache->read("attachtypes"); }
Zeile 3119	Zeile 3141
{ global $change_dir; $icon = $change_dir."/".str_replace("{theme}", $theme['imgdir'], $attachtypes[$ext]['icon']);	{ global $change_dir; $icon = $change_dir."/".str_replace("{theme}", $theme['imgdir'], $attachtypes[$ext]['icon']);
} else	} else
{ $icon = str_replace("{theme}", $theme['imgdir'], $attachtypes[$ext]['icon']); }	{ $icon = str_replace("{theme}", $theme['imgdir'], $attachtypes[$ext]['icon']); }
Zeile 3137	Zeile 3159
global $change_dir; $theme['imgdir'] = "{$change_dir}/images"; }	global $change_dir; $theme['imgdir'] = "{$change_dir}/images"; }

return "<img src=\"{$theme['imgdir']}/attachtypes/unknown.gif\" border=\"0\" alt=\".{$ext}\" />"; } }	return "<img src=\"{$theme['imgdir']}/attachtypes/unknown.gif\" border=\"0\" alt=\".{$ext}\" />"; } }

/** * Get a list of the unviewable forums for the current user *	/** * Get a list of the unviewable forums for the current user *
Zeile 3151	Zeile 3173
function get_unviewable_forums($only_readable_threads=false) { global $forum_cache, $permissioncache, $mybb, $unviewable, $templates, $forumpass;	function get_unviewable_forums($only_readable_threads=false) { global $forum_cache, $permissioncache, $mybb, $unviewable, $templates, $forumpass;

if(!is_array($forum_cache))	if(!is_array($forum_cache))
{	{
cache_forums();	cache_forums();
}	}
if(!is_array($permissioncache)) { $permissioncache = forum_permissions(); }	if(!is_array($permissioncache)) { $permissioncache = forum_permissions(); }

$password_forums = array(); foreach($forum_cache as $fid => $forum) {	$password_forums = array(); foreach($forum_cache as $fid => $forum) {
Zeile 3182	Zeile 3204
{ $pwverified = 0; }	{ $pwverified = 0; }

$password_forums[$forum['fid']] = $forum['password']; } else	$password_forums[$forum['fid']] = $forum['password']; } else
Zeile 3242	Zeile 3264
global $nav, $navbits, $templates, $theme, $lang, $mybb; eval("\$navsep = \"".$templates->get("nav_sep")."\";");	global $nav, $navbits, $templates, $theme, $lang, $mybb; eval("\$navsep = \"".$templates->get("nav_sep")."\";");

$i = 0; $activesep = '';	$i = 0; $activesep = '';

if(is_array($navbits)) { reset($navbits);	if(is_array($navbits)) { reset($navbits);
Zeile 3254	Zeile 3276
if(isset($navbits[$key+1])) { if(isset($navbits[$key+2]))	if(isset($navbits[$key+1])) { if(isset($navbits[$key+2]))
{	{
$sep = $navsep;	$sep = $navsep;
}	}
else { $sep = ""; }	else { $sep = ""; }

$multipage = null; $multipage_dropdown = null; if(!empty($navbit['multipage']))	$multipage = null; $multipage_dropdown = null; if(!empty($navbit['multipage']))
Zeile 3366	Zeile 3388
elseif(!empty($multipage)) { $navbits[$navsize]['url'] = get_forum_link($forumnav['fid'], $multipage['current_page']);	elseif(!empty($multipage)) { $navbits[$navsize]['url'] = get_forum_link($forumnav['fid'], $multipage['current_page']);

$navbits[$navsize]['multipage'] = $multipage; $navbits[$navsize]['multipage']['url'] = str_replace('{fid}', $forumnav['fid'], FORUM_URL_PAGED); }	$navbits[$navsize]['multipage'] = $multipage; $navbits[$navsize]['multipage']['url'] = str_replace('{fid}', $forumnav['fid'], FORUM_URL_PAGED); }
Zeile 3383	Zeile 3405
/** * Resets the breadcrumb navigation to the first item, and clears the rest	/** * Resets the breadcrumb navigation to the first item, and clears the rest
*/	*/
function reset_breadcrumb() { global $navbits;	function reset_breadcrumb() { global $navbits;
Zeile 3406	Zeile 3428
function build_archive_link($type, $id="") { global $mybb;	function build_archive_link($type, $id="") { global $mybb;

// If the server OS is not Windows and not Apache or the PHP is running as a CGI or we have defined ARCHIVE_QUERY_STRINGS, use query strings - DIRECTORY_SEPARATOR checks if running windows //if((DIRECTORY_SEPARATOR == '\\' && is_numeric(stripos($_SERVER['SERVER_SOFTWARE'], "apache")) == false) \|\| is_numeric(stripos(SAPI_NAME, "cgi")) !== false \|\| defined("ARCHIVE_QUERY_STRINGS")) if($mybb->settings['seourls_archive'] == 1)	// If the server OS is not Windows and not Apache or the PHP is running as a CGI or we have defined ARCHIVE_QUERY_STRINGS, use query strings - DIRECTORY_SEPARATOR checks if running windows //if((DIRECTORY_SEPARATOR == '\\' && is_numeric(stripos($_SERVER['SERVER_SOFTWARE'], "apache")) == false) \|\| is_numeric(stripos(SAPI_NAME, "cgi")) !== false \|\| defined("ARCHIVE_QUERY_STRINGS")) if($mybb->settings['seourls_archive'] == 1)
Zeile 3434	Zeile 3456
} return $url;	} return $url;
}	}
/** * Prints a debug information page	/** * Prints a debug information page
Zeile 3550	Zeile 3572
echo "<br />\n"; }	echo "<br />\n"; }
if(count($templates->uncached_templates > 0))	if(count($templates->uncached_templates) > 0)
{ echo "<table style=\"background-color: #666;\" width=\"95%\" cellpadding=\"4\" cellspacing=\"1\" align=\"center\">\n"; echo "<tr>\n";	{ echo "<table style=\"background-color: #666;\" width=\"95%\" cellpadding=\"4\" cellspacing=\"1\" align=\"center\">\n"; echo "<tr>\n";
Zeile 3716	Zeile 3738
} if($weeks == 1)	} if($weeks == 1)
{	{
$nicetime['weeks'] = "1".$lang_week;	$nicetime['weeks'] = "1".$lang_week;
}	}
else if($weeks > 1)	else if($weeks > 1)
{	{
$nicetime['weeks'] = $weeks.$lang_weeks; } if($days == 1) { $nicetime['days'] = "1".$lang_day;	$nicetime['weeks'] = $weeks.$lang_weeks; } if($days == 1) { $nicetime['days'] = "1".$lang_day;
}	}
else if($days > 1)	else if($days > 1)
{	{
$nicetime['days'] = $days.$lang_days; }	$nicetime['days'] = $days.$lang_days; }
Zeile 3738	Zeile 3760
if($hours == 1) { $nicetime['hours'] = "1".$lang_hour;	if($hours == 1) { $nicetime['hours'] = "1".$lang_hour;
}	}
else if($hours > 1)	else if($hours > 1)
{	{
$nicetime['hours'] = $hours.$lang_hours;	$nicetime['hours'] = $hours.$lang_hours;
}	}
} if(!isset($options['minutes']) \|\| $options['minutes'] !== false)	} if(!isset($options['minutes']) \|\| $options['minutes'] !== false)
Zeile 3750	Zeile 3772
if($minutes == 1) { $nicetime['minutes'] = "1".$lang_minute;	if($minutes == 1) { $nicetime['minutes'] = "1".$lang_minute;
}	}
else if($minutes > 1) { $nicetime['minutes'] = $minutes.$lang_minutes;	else if($minutes > 1) { $nicetime['minutes'] = $minutes.$lang_minutes;
Zeile 3772	Zeile 3794
if(is_array($nicetime)) { return implode(", ", $nicetime);	if(is_array($nicetime)) { return implode(", ", $nicetime);
} }	} }
/** * Select an alternating row colour based on the previous call to this function	/** * Select an alternating row colour based on the previous call to this function
Zeile 3784	Zeile 3806
function alt_trow($reset=0) { global $alttrow;	function alt_trow($reset=0) { global $alttrow;

if($alttrow == "trow1" && !$reset) { $trow = "trow2";	if($alttrow == "trow1" && !$reset) { $trow = "trow2";
Zeile 3808	Zeile 3830
function join_usergroup($uid, $joingroup) { global $db, $mybb;	function join_usergroup($uid, $joingroup) { global $db, $mybb;
if($uid == $mybb->user['uid']) {	if($uid == $mybb->user['uid']) {
$user = $mybb->user; } else	$user = $mybb->user; } else
Zeile 3830	Zeile 3852
foreach($groups as $gid) { if(trim($gid) != "" && $gid != $user['usergroup'] && !$donegroup[$gid])	foreach($groups as $gid) { if(trim($gid) != "" && $gid != $user['usergroup'] && !$donegroup[$gid])
{ $groupslist .= $comma.$gid; $comma = ",";	{ $groupslist .= $comma.$gid; $comma = ",";
$donegroup[$gid] = 1; } }	$donegroup[$gid] = 1; } }
Zeile 3843	Zeile 3865
{ $db->update_query("users", array('additionalgroups' => $groupslist), "uid='".intval($uid)."'"); return true;	{ $db->update_query("users", array('additionalgroups' => $groupslist), "uid='".intval($uid)."'"); return true;
}	}
else { return false;	else { return false;
Zeile 3865	Zeile 3887
$user = $mybb->user; } else	$user = $mybb->user; } else
{	{
$query = $db->simple_select("users", "*", "uid='".intval($uid)."'"); $user = $db->fetch_array($query); }	$query = $db->simple_select("users", "*", "uid='".intval($uid)."'"); $user = $db->fetch_array($query); }
Zeile 3887	Zeile 3909
$donegroup[$gid] = 1; } }	$donegroup[$gid] = 1; } }
}	}
$dispupdate = ""; if($leavegroup == $user['displaygroup']) { $dispupdate = ", displaygroup=usergroup"; }	$dispupdate = ""; if($leavegroup == $user['displaygroup']) { $dispupdate = ", displaygroup=usergroup"; }

$db->write_query(" UPDATE ".TABLE_PREFIX."users SET additionalgroups='$groupslist' $dispupdate WHERE uid='".intval($uid)."' ");	$db->write_query(" UPDATE ".TABLE_PREFIX."users SET additionalgroups='$groupslist' $dispupdate WHERE uid='".intval($uid)."' ");

$cache->update_moderators(); }	$cache->update_moderators(); }
Zeile 3938	Zeile 3960
if($fields == true) { global $mybb;	if($fields == true) { global $mybb;

if(!is_array($ignore)) { $ignore = array($ignore);	if(!is_array($ignore)) { $ignore = array($ignore);
Zeile 3946	Zeile 3968
$form_html = ""; if(!empty($mybb->input))	$form_html = ""; if(!empty($mybb->input))
{	{
foreach($mybb->input as $name => $value) { if(in_array($name, $ignore)) { continue; }	foreach($mybb->input as $name => $value) { if(in_array($name, $ignore)) { continue; }

$form_html .= "<input type=\"hidden\" name=\"".htmlspecialchars_uni((string)$name)."\" value=\"".htmlspecialchars_uni((string)$value)."\" />\n";	$form_html .= "<input type=\"hidden\" name=\"".htmlspecialchars_uni((string)$name)."\" value=\"".htmlspecialchars_uni((string)$value)."\" />\n";
}	}
}	}

return array('location' => $location, 'form_html' => $form_html, 'form_method' => $mybb->request_method); } else	return array('location' => $location, 'form_html' => $form_html, 'form_method' => $mybb->request_method); } else
Zeile 3970	Zeile 3992
{ $location .= "?".htmlspecialchars_uni($_ENV['QUERY_STRING']); }	{ $location .= "?".htmlspecialchars_uni($_ENV['QUERY_STRING']); }

if((isset($_SERVER['REQUEST_METHOD']) && $_SERVER['REQUEST_METHOD'] == "POST") \|\| (isset($_ENV['REQUEST_METHOD']) && $_ENV['REQUEST_METHOD'] == "POST"))	if((isset($_SERVER['REQUEST_METHOD']) && $_SERVER['REQUEST_METHOD'] == "POST") \|\| (isset($_ENV['REQUEST_METHOD']) && $_ENV['REQUEST_METHOD'] == "POST"))
{	{
$post_array = array('action', 'fid', 'pid', 'tid', 'uid', 'eid');	$post_array = array('action', 'fid', 'pid', 'tid', 'uid', 'eid');

foreach($post_array as $var) { if(isset($_POST[$var])) { $addloc[] = urlencode($var).'='.urlencode($_POST[$var]);	foreach($post_array as $var) { if(isset($_POST[$var])) { $addloc[] = urlencode($var).'='.urlencode($_POST[$var]);
} }	} }
if(isset($addloc) && is_array($addloc)) { if(strpos($location, "?") === false)	if(isset($addloc) && is_array($addloc)) { if(strpos($location, "?") === false)
Zeile 4003	Zeile 4025
} return $location;	} return $location;
} }	} }
/** * Build a theme selection menu *	/** * Build a theme selection menu *
Zeile 4094	Zeile 4116
} return $themeselect;	} return $themeselect;
} /**	} /**
* Custom function for htmlspecialchars which takes in to account unicode * * @param string The string to format	* Custom function for htmlspecialchars which takes in to account unicode * * @param string The string to format
Zeile 4141	Zeile 4163
else { $decimals = 0;	else { $decimals = 0;
}	}
return number_format((double)$number, $decimals, $mybb->settings['decpoint'], $mybb->settings['thousandssep']); } }	return number_format((double)$number, $decimals, $mybb->settings['decpoint'], $mybb->settings['thousandssep']); } }

function convert_through_utf8($str, $to=true) { global $lang; static $charset; static $use_mb; static $use_iconv;	function convert_through_utf8($str, $to=true) { global $lang; static $charset; static $use_mb; static $use_iconv;

if(!isset($charset)) { $charset = my_strtolower($lang->settings['charset']); }	if(!isset($charset)) { $charset = my_strtolower($lang->settings['charset']); }

if($charset == "utf-8")	if($charset == "utf-8")
{	{
return $str; }	return $str; }

if(!isset($use_iconv)) { $use_iconv = function_exists("iconv");	if(!isset($use_iconv)) { $use_iconv = function_exists("iconv");
}	}
if(!isset($use_mb))	if(!isset($use_mb))
{	{
$use_mb = function_exists("mb_convert_encoding"); }	$use_mb = function_exists("mb_convert_encoding"); }

if($use_iconv \|\| $use_mb) { if($to) { $from_charset = $lang->settings['charset']; $to_charset = "UTF-8";	if($use_iconv \|\| $use_mb) { if($to) { $from_charset = $lang->settings['charset']; $to_charset = "UTF-8";
} else {	} else {
$from_charset = "UTF-8"; $to_charset = $lang->settings['charset'];	$from_charset = "UTF-8"; $to_charset = $lang->settings['charset'];
}	}
if($use_iconv)	if($use_iconv)
{	{
return iconv($from_charset, $to_charset."//IGNORE", $str);	return iconv($from_charset, $to_charset."//IGNORE", $str);
} else {	} else {
return @mb_convert_encoding($str, $to_charset, $from_charset); } }	return @mb_convert_encoding($str, $to_charset, $from_charset); } }
Zeile 4214	Zeile 4236
/** * Replacement function for PHP's wordwrap(). This version does not break up HTML tags, URLs or unicode references.	/** * Replacement function for PHP's wordwrap(). This version does not break up HTML tags, URLs or unicode references.
*	*
* @param string The string to be word wrapped * @return string The word wraped string */	* @param string The string to be word wrapped * @return string The word wraped string */
Zeile 4225	Zeile 4247
if($mybb->settings['wordwrap'] > 0) { $message = convert_through_utf8($message);	if($mybb->settings['wordwrap'] > 0) { $message = convert_through_utf8($message);

if(!($new_message = @preg_replace("#(((?>[^\s&/<>\"\\-\[\]])\|(&\#[a-z0-9]{1,10};)){{$mybb->settings['wordwrap']}})#u", "$0", $message)))	if(!($new_message = @preg_replace("#(((?>[^\s&/<>\"\\-\[\]])\|(&\#[a-z0-9]{1,10};)){{$mybb->settings['wordwrap']}})#u", "$0", $message)))
{ $new_message = preg_replace("#(((?>[^\s&/<>\"\\-\[\]])\|(&\#[a-z0-9]{1,10};)){{$mybb->settings['wordwrap']}})#", "$0", $message);	{ $new_message = preg_replace("#(((?>[^\s&/<>\"\\-\[\]])\|(&\#[a-z0-9]{1,10};)){{$mybb->settings['wordwrap']}})#", "$0", $message);
}	}

$new_message = convert_through_utf8($new_message, false);	$new_message = convert_through_utf8($new_message, false);

return $new_message; }	return $new_message; }

return $message;	return $message;
} /** * Workaround for date limitation in PHP to establish the day of a birthday (Provided by meme) *	} /** * Workaround for date limitation in PHP to establish the day of a birthday (Provided by meme) *
* @param int The month of the birthday * @param int The day of the birthday * @param int The year of the bithday	* @param int The month of the birthday * @param int The day of the birthday * @param int The year of the bithday
Zeile 4264	Zeile 4286
$h--; if($i == $year && $l == $month && $m == $day)	$h--; if($i == $year && $l == $month && $m == $day)
{	{
return $h; }	return $h; }
Zeile 4286	Zeile 4308
function get_bdays($in) { return array(	function get_bdays($in) { return array(
31,	31,
($in % 4 == 0 && ($in % 100 > 0 \|\| $in % 400 == 0) ? 29 : 28), 31, 30,	($in % 4 == 0 && ($in % 100 > 0 \|\| $in % 400 == 0) ? 29 : 28), 31, 30,
Zeile 4338	Zeile 4360
$lang->month_10, $lang->month_11, $lang->month_12	$lang->month_10, $lang->month_11, $lang->month_12
);	);
// This needs to be in this specific order $find = array(	// This needs to be in this specific order $find = array(
Zeile 4370	Zeile 4392
$bdays = str_replace($find, $html, $bdays); $bmonth = str_replace($find, $html, $bmonth);	$bdays = str_replace($find, $html, $bdays); $bmonth = str_replace($find, $html, $bmonth);

$replace = array( sprintf('%02s', $bm), sprintf('%02s', $bd),	$replace = array( sprintf('%02s', $bm), sprintf('%02s', $bd),
Zeile 4383	Zeile 4405
$wd, ($bm == 9 ? my_substr($bmonth[$bm-1], 0, 4) : my_substr($bmonth[$bm-1], 0, 3)), );	$wd, ($bm == 9 ? my_substr($bmonth[$bm-1], 0, 4) : my_substr($bmonth[$bm-1], 0, 3)), );

// Do we have the full month in our output? // If so there's no need for the short month if(strpos($display, 'F') !== false)	// Do we have the full month in our output? // If so there's no need for the short month if(strpos($display, 'F') !== false)
Zeile 4391	Zeile 4413
array_pop($find); array_pop($replace); }	array_pop($find); array_pop($replace); }

return str_replace($find, $replace, $display);	return str_replace($find, $replace, $display);
} /**	} /**
* Returns the age of a user with specified birthday. * * @param string The birthday of a user.	* Returns the age of a user with specified birthday. * * @param string The birthday of a user.
Zeile 4438	Zeile 4460
"replyto" => 0 ); $db->update_query("posts", $replyto_update, "pid='{$post['pid']}'");	"replyto" => 0 ); $db->update_query("posts", $replyto_update, "pid='{$post['pid']}'");
}	}
$firstpostup = array( "firstpost" => $post['pid']	$firstpostup = array( "firstpost" => $post['pid']
Zeile 4454	Zeile 4476
*/ function my_strlen($string) {	*/ function my_strlen($string) {
global $lang; $string = preg_replace("#&\#([0-9]+);#", "-", $string);	global $lang; $string = preg_replace("#&\#([0-9]+);#", "-", $string); if(strtolower($lang->settings['charset']) == "utf-8") { // Get rid of any excess RTL and LTR override for they are the workings of the devil $string = str_replace(dec_to_utf8(8238), "", $string); $string = str_replace(dec_to_utf8(8237), "", $string);

if(strtolower($lang->settings['charset']) == "utf-8") { // Get rid of any excess RTL and LTR override for they are the workings of the devil $string = str_replace(dec_to_utf8(8238), "", $string); $string = str_replace(dec_to_utf8(8237), "", $string); // Remove dodgy whitespaces $string = str_replace(chr(0xCA), "", $string); }	// Remove dodgy whitespaces $string = str_replace(chr(0xCA), "", $string); }
$string = trim($string);	$string = trim($string);
if(function_exists("mb_strlen")) { $string_length = mb_strlen($string); } else { $string_length = strlen($string); }	if(function_exists("mb_strlen")) { $string_length = mb_strlen($string); } else { $string_length = strlen($string); }

return $string_length;	return $string_length;
} /**	} /**
Zeile 4489	Zeile 4511
* @param int (optional) How much to cut * @param bool (optional) Properly handle HTML entities? * @return int The cut part of the string.	* @param int (optional) How much to cut * @param bool (optional) Properly handle HTML entities? * @return int The cut part of the string.
*/	*/
function my_substr($string, $start, $length="", $handle_entities = false) { if($handle_entities)	function my_substr($string, $start, $length="", $handle_entities = false) { if($handle_entities)
Zeile 4501	Zeile 4523
if($length != "") { $cut_string = mb_substr($string, $start, $length);	if($length != "") { $cut_string = mb_substr($string, $start, $length);
}	}
else	else
{	{
$cut_string = mb_substr($string, $start); } }	$cut_string = mb_substr($string, $start); } }
Zeile 4512	Zeile 4534
if($length != "") { $cut_string = substr($string, $start, $length);	if($length != "") { $cut_string = substr($string, $start, $length);
}	}
else { $cut_string = substr($string, $start); }	else { $cut_string = substr($string, $start); }
}	}
if($handle_entities) { $cut_string = htmlspecialchars_uni($cut_string); } return $cut_string;	if($handle_entities) { $cut_string = htmlspecialchars_uni($cut_string); } return $cut_string;
}	}
/** * lowers the case of a string, mb strings accounted for	/** * lowers the case of a string, mb strings accounted for
Zeile 4535	Zeile 4557
function my_strtolower($string) { if(function_exists("mb_strtolower"))	function my_strtolower($string) { if(function_exists("mb_strtolower"))
{	{
$string = mb_strtolower($string);	$string = mb_strtolower($string);
}	}
else { $string = strtolower($string); }	else { $string = strtolower($string); }

return $string;	return $string;
} /**	} /**
* Finds a needle in a haystack and returns it position, mb strings accounted for * * @param string String to look in (haystack)	* Finds a needle in a haystack and returns it position, mb strings accounted for * * @param string String to look in (haystack)
Zeile 4569	Zeile 4591
{ $position = strpos($haystack, $needle, $offset); }	{ $position = strpos($haystack, $needle, $offset); }

return $position; }	return $position; }
Zeile 4580	Zeile 4602
* @return int The uped string. */ function my_strtoupper($string)	* @return int The uped string. */ function my_strtoupper($string)
{	{
if(function_exists("mb_strtoupper"))	if(function_exists("mb_strtoupper"))
{	{
$string = mb_strtoupper($string);	$string = mb_strtoupper($string);
}	}
else { $string = strtoupper($string);	else { $string = strtoupper($string);
}	}
return $string; }	return $string; }
Zeile 4600	Zeile 4622
* @return int The un-htmlentitied' string. */ function unhtmlentities($string)	* @return int The un-htmlentitied' string. */ function unhtmlentities($string)
{	{
// Replace numeric entities	// Replace numeric entities
$string = preg_replace('~&#x([0-9a-f]+);~ei', 'unichr(hexdec("\\1"))', $string); $string = preg_replace('~&#([0-9]+);~e', 'unichr("\\1")', $string);	$string = preg_replace_callback('~&#x([0-9a-f]+);~i', create_function('$matches', 'return unichr(hexdec($matches[1]));'), $string); $string = preg_replace_callback('~&#([0-9]+);~', create_function('$matches', 'return unichr($matches[1]);'), $string);
// Replace literal entities $trans_tbl = get_html_translation_table(HTML_ENTITIES); $trans_tbl = array_flip($trans_tbl);	// Replace literal entities $trans_tbl = get_html_translation_table(HTML_ENTITIES); $trans_tbl = array_flip($trans_tbl);
return strtr($string, $trans_tbl); }	return strtr($string, $trans_tbl); }
/** * Returns any ascii to it's character (utf-8 safe).	/** * Returns any ascii to it's character (utf-8 safe).
Zeile 4619	Zeile 4641
* @return int The characterized ascii. */ function unichr($c)	* @return int The characterized ascii. */ function unichr($c)
{ if($c <= 0x7F) { return chr($c); }	{ if($c <= 0x7F) { return chr($c); }
else if($c <= 0x7FF)	else if($c <= 0x7FF)
{ return chr(0xC0 \| $c >> 6) . chr(0x80 \| $c & 0x3F); }	{ return chr(0xC0 \| $c >> 6) . chr(0x80 \| $c & 0x3F); }
else if($c <= 0xFFFF)	else if($c <= 0xFFFF)
{ return chr(0xE0 \| $c >> 12) . chr(0x80 \| $c >> 6 & 0x3F) . chr(0x80 \| $c & 0x3F); }	{ return chr(0xE0 \| $c >> 12) . chr(0x80 \| $c >> 6 & 0x3F) . chr(0x80 \| $c & 0x3F); }
else if($c <= 0x10FFFF) {	else if($c <= 0x10FFFF) {
return chr(0xF0 \| $c >> 18) . chr(0x80 \| $c >> 12 & 0x3F) . chr(0x80 \| $c >> 6 & 0x3F) . chr(0x80 \| $c & 0x3F); }	return chr(0xF0 \| $c >> 18) . chr(0x80 \| $c >> 12 & 0x3F) . chr(0x80 \| $c >> 6 & 0x3F) . chr(0x80 \| $c & 0x3F); }
else {	else {
return false; }	return false; }
} /**	} /**
Zeile 4650	Zeile 4672
* * @param array The event data array. * @return string The link to the event poster.	* * @param array The event data array. * @return string The link to the event poster.
*/	*/
function get_event_poster($event) { $event['username'] = format_name($event['username'], $event['usergroup'], $event['displaygroup']);	function get_event_poster($event) { $event['username'] = format_name($event['username'], $event['usergroup'], $event['displaygroup']);
Zeile 4667	Zeile 4689
function get_event_date($event) { global $mybb;	function get_event_date($event) { global $mybb;

$event_date = explode("-", $event['date']); $event_date = mktime(0, 0, 0, $event_date[1], $event_date[0], $event_date[2]); $event_date = my_date($mybb->settings['dateformat'], $event_date);	$event_date = explode("-", $event['date']); $event_date = mktime(0, 0, 0, $event_date[1], $event_date[0], $event_date[2]); $event_date = my_date($mybb->settings['dateformat'], $event_date);
Zeile 4734	Zeile 4756
{ $onclick = " onclick=\"{$onclick}\""; }	{ $onclick = " onclick=\"{$onclick}\""; }

return "<a href=\"{$mybb->settings['bburl']}/".get_profile_link($uid)."\"{$target}{$onclick}>{$username}</a>"; } }	return "<a href=\"{$mybb->settings['bburl']}/".get_profile_link($uid)."\"{$target}{$onclick}>{$username}</a>"; } }
Zeile 4752	Zeile 4774
{ $link = str_replace("{fid}", $fid, FORUM_URL_PAGED); $link = str_replace("{page}", $page, $link);	{ $link = str_replace("{fid}", $fid, FORUM_URL_PAGED); $link = str_replace("{page}", $page, $link);
return htmlspecialchars_uni($link);	return htmlspecialchars_uni($link);
} else {	} else {
Zeile 4782	Zeile 4804
{ $link = THREAD_URL_PAGED; }	{ $link = THREAD_URL_PAGED; }
$link = str_replace("{tid}", $tid, $link);	$link = str_replace("{tid}", $tid, $link);
$link = str_replace("{page}", $page, $link); return htmlspecialchars_uni($link); }	$link = str_replace("{page}", $page, $link); return htmlspecialchars_uni($link); }
Zeile 4914	Zeile 4936
{ return $user_cache[$uid]; }	{ return $user_cache[$uid]; }
else	elseif(($uid > 0))
{ $query = $db->simple_select("users", "*", "uid='{$uid}'"); $user_cache[$uid] = $db->fetch_array($query);	{ $query = $db->simple_select("users", "*", "uid='{$uid}'"); $user_cache[$uid] = $db->fetch_array($query);

return $user_cache[$uid];	return $user_cache[$uid];
} } /**	} return array(); } /**
* Get the forum of a specific forum id. * * @param int The forum id of the forum.	* Get the forum of a specific forum id. * * @param int The forum id of the forum.
Zeile 4941	Zeile 4964
} if(!$forum_cache[$fid])	} if(!$forum_cache[$fid])
{	{
return false; }	return false; }
Zeile 4949	Zeile 4972
{ $parents = explode(",", $forum_cache[$fid]['parentlist']); if(is_array($parents))	{ $parents = explode(",", $forum_cache[$fid]['parentlist']); if(is_array($parents))
{	{
foreach($parents as $parent) { if($forum_cache[$parent]['active'] == 0)	foreach($parents as $parent) { if($forum_cache[$parent]['active'] == 0)
Zeile 4958	Zeile 4981
} } }	} } }
}	}
return $forum_cache[$fid]; }	return $forum_cache[$fid]; }
Zeile 4976	Zeile 4999
static $thread_cache; if(isset($thread_cache[$tid]) && !$recache)	static $thread_cache; if(isset($thread_cache[$tid]) && !$recache)
{	{
return $thread_cache[$tid]; } else	return $thread_cache[$tid]; } else
Zeile 4985	Zeile 5008
$thread = $db->fetch_array($query); if($thread)	$thread = $db->fetch_array($query); if($thread)
{	{
$thread_cache[$tid] = $thread; return $thread;	$thread_cache[$tid] = $thread; return $thread;
}	}
else { $thread_cache[$tid] = false;	else { $thread_cache[$tid] = false;
return false; }	return false; }
} }	} }
Zeile 5002	Zeile 5025
* * @param int The post id of the post. * @return string The database row of the post.	* * @param int The post id of the post. * @return string The database row of the post.
*/	*/
function get_post($pid) { global $db;	function get_post($pid) { global $db;
Zeile 5011	Zeile 5034
if(isset($post_cache[$pid])) { return $post_cache[$pid];	if(isset($post_cache[$pid])) { return $post_cache[$pid];
}	}
else { $query = $db->simple_select("posts", "*", "pid='".intval($pid)."'");	else { $query = $db->simple_select("posts", "*", "pid='".intval($pid)."'");
Zeile 5029	Zeile 5052
} } }	} } }

/** * Get inactivate forums. *	/** * Get inactivate forums. *
Zeile 5038	Zeile 5061
function get_inactive_forums() { global $forum_cache, $cache, $inactiveforums;	function get_inactive_forums() { global $forum_cache, $cache, $inactiveforums;

if(!$forum_cache) { cache_forums();	if(!$forum_cache) { cache_forums();
Zeile 5056	Zeile 5079
if(my_strpos(",".$forum1['parentlist'].",", ",".$fid.",") !== false && !in_array($fid1, $inactive)) { $inactive[] = $fid1;	if(my_strpos(",".$forum1['parentlist'].",", ",".$fid.",") !== false && !in_array($fid1, $inactive)) { $inactive[] = $fid1;
} }	} }
} } $inactiveforums = implode(",", $inactive);	} } $inactiveforums = implode(",", $inactive);

return $inactiveforums; }	return $inactiveforums; }

/** * Checks to make sure a user has not tried to login more times than permitted * Will stop execution with call to error() unless	/** * Checks to make sure a user has not tried to login more times than permitted * Will stop execution with call to error() unless
Zeile 5088	Zeile 5111
$failedlogin = 0; if(!empty($mybb->cookies['loginattempts']))	$failedlogin = 0; if(!empty($mybb->cookies['loginattempts']))
{	{
$loginattempts = $mybb->cookies['loginattempts']; }	$loginattempts = $mybb->cookies['loginattempts']; }
Zeile 5105	Zeile 5128
$now = TIME_NOW; if(empty($mybb->cookies['failedlogin']))	$now = TIME_NOW; if(empty($mybb->cookies['failedlogin']))
{	{
$failedtime = $now; } else	$failedtime = $now; } else
Zeile 5122	Zeile 5145
if(empty($failedlogin)) { my_setcookie('failedlogin', $now);	if(empty($failedlogin)) { my_setcookie('failedlogin', $now);
if($fatal) { error($lang->sprintf($lang->failed_login_wait, $hoursleft, $minsleft, $secsleft)); } return false; }	if($fatal) { error($lang->sprintf($lang->failed_login_wait, $hoursleft, $minsleft, $secsleft)); } return false; }
// Work out if the user has waited long enough before letting them login again if($mybb->cookies['failedlogin'] < ($now - $mybb->settings['failedlogintime'] * 60)) {	// Work out if the user has waited long enough before letting them login again if($mybb->cookies['failedlogin'] < ($now - $mybb->settings['failedlogintime'] * 60)) {
Zeile 5165	Zeile 5188
* * @param string The string to check. * @return boolean True when valid, false when invalid.	* * @param string The string to check. * @return boolean True when valid, false when invalid.
*/	*/
function validate_email_format($email) { if(strpos($email, ' ') !== false)	function validate_email_format($email) { if(strpos($email, ' ') !== false)
Zeile 5174	Zeile 5197
} // Valid local characters for email addresses: http://www.remote.org/jochen/mail/info/chars.html return preg_match("/^[a-zA-Z0-9&+\-_.{}~^\?=\/]+@[a-zA-Z0-9-]+\.([a-zA-Z0-9-]+\.)[a-zA-Z0-9-]{2,}$/si", $email);	} // Valid local characters for email addresses: http://www.remote.org/jochen/mail/info/chars.html return preg_match("/^[a-zA-Z0-9&+\-_.{}~^\?=\/]+@[a-zA-Z0-9-]+\.([a-zA-Z0-9-]+\.)[a-zA-Z0-9-]{2,}$/si", $email);
}	}
/** * Checks to see if the email is already in use by another	/** * Checks to see if the email is already in use by another
Zeile 5186	Zeile 5209
function email_already_in_use($email, $uid="") { global $db;	function email_already_in_use($email, $uid="") { global $db;

$uid_string = ""; if($uid) { $uid_string = " AND uid != '".intval($uid)."'"; } $query = $db->simple_select("users", "COUNT(email) as emails", "email = '".$db->escape_string($email)."'{$uid_string}");	$uid_string = ""; if($uid) { $uid_string = " AND uid != '".intval($uid)."'"; } $query = $db->simple_select("users", "COUNT(email) as emails", "email = '".$db->escape_string($email)."'{$uid_string}");

if($db->fetch_field($query, "emails") > 0) { return true; }	if($db->fetch_field($query, "emails") > 0) { return true; }

return false; } /* * DEPRECATED! ONLY INCLUDED FOR COMPATIBILITY PURPOSES.	return false; } /* * DEPRECATED! ONLY INCLUDED FOR COMPATIBILITY PURPOSES.
*/	*/
function rebuildsettings() { rebuild_settings();	function rebuildsettings() { rebuild_settings();
Zeile 5221	Zeile 5244
if(!file_exists(MYBB_ROOT."inc/settings.php")) { $mode = "x";	if(!file_exists(MYBB_ROOT."inc/settings.php")) { $mode = "x";
} else { $mode = "w"; }	} else { $mode = "w"; }
$options = array( "order_by" => "title", "order_dir" => "ASC" ); $query = $db->simple_select("settings", "value, name", "", $options);	$options = array( "order_by" => "title", "order_dir" => "ASC" ); $query = $db->simple_select("settings", "value, name", "", $options);

while($setting = $db->fetch_array($query)) { $mybb->settings[$setting['name']] = $setting['value']; $setting['value'] = addcslashes($setting['value'], '\\"$'); $settings .= "\$settings['{$setting['name']}'] = \"{$setting['value']}\";\n"; }	while($setting = $db->fetch_array($query)) { $mybb->settings[$setting['name']] = $setting['value']; $setting['value'] = addcslashes($setting['value'], '\\"$'); $settings .= "\$settings['{$setting['name']}'] = \"{$setting['value']}\";\n"; }

$settings = "<"."?php\n/*******************************\ \n DO NOT EDIT THIS FILE, PLEASE USE\n THE SETTINGS EDITOR\n\*******************************/\n\n$settings\n?".">"; $file = @fopen(MYBB_ROOT."inc/settings.php", $mode); @fwrite($file, $settings);	$settings = "<"."?php\n/*******************************\ \n DO NOT EDIT THIS FILE, PLEASE USE\n THE SETTINGS EDITOR\n\*******************************/\n\n$settings\n?".">"; $file = @fopen(MYBB_ROOT."inc/settings.php", $mode); @fwrite($file, $settings);
Zeile 5247	Zeile 5270
$GLOBALS['settings'] = &$mybb->settings; }	$GLOBALS['settings'] = &$mybb->settings; }

/** * Build a PREG compatible array of search highlight terms to replace in posts. *	/** * Build a PREG compatible array of search highlight terms to replace in posts. *
Zeile 5261	Zeile 5284
if($mybb->settings['minsearchword'] < 1) { $mybb->settings['minsearchword'] = 3;	if($mybb->settings['minsearchword'] < 1) { $mybb->settings['minsearchword'] = 3;
}	}
if(is_array($terms)) {	if(is_array($terms)) {
Zeile 5334	Zeile 5357
{ return false; }	{ return false; }

// Sort the word array by length. Largest terms go first and work their way down to the smallest term. // This resolves problems like "test tes" where "tes" will be highlighted first, then "test" can't be highlighted because of the changed html usort($words, create_function('$a,$b', 'return strlen($b) - strlen($a);'));	// Sort the word array by length. Largest terms go first and work their way down to the smallest term. // This resolves problems like "test tes" where "tes" will be highlighted first, then "test" can't be highlighted because of the changed html usort($words, create_function('$a,$b', 'return strlen($b) - strlen($a);'));

// Loop through our words to build the PREG compatible strings foreach($words as $word) { $word = trim($word);	// Loop through our words to build the PREG compatible strings foreach($words as $word) { $word = trim($word);

$word = my_strtolower($word);	$word = my_strtolower($word);

// Special boolean operators should be stripped if($word == "" \|\| $word == "or" \|\| $word == "not" \|\| $word == "and") {	// Special boolean operators should be stripped if($word == "" \|\| $word == "or" \|\| $word == "not" \|\| $word == "and") {
Zeile 5373	Zeile 5396
if($src < 0) {	if($src < 0) {
return false; }	return false; }
elseif($src <= 0x007f) { $dest .= chr($src);	elseif($src <= 0x007f) { $dest .= chr($src);
Zeile 5447	Zeile 5470
global $cache, $db; $banned_cache = $cache->read("bannedemails");	global $cache, $db; $banned_cache = $cache->read("bannedemails");

if($banned_cache === false) { // Failed to read cache, see if we can rebuild it $cache->update_bannedemails(); $banned_cache = $cache->read("bannedemails");	if($banned_cache === false) { // Failed to read cache, see if we can rebuild it $cache->update_bannedemails(); $banned_cache = $cache->read("bannedemails");
}	}
if(is_array($banned_cache) && !empty($banned_cache)) { foreach($banned_cache as $banned_email)	if(is_array($banned_cache) && !empty($banned_cache)) { foreach($banned_cache as $banned_email)
Zeile 5471	Zeile 5494
} return true; }	} return true; }
} }	} }
// Still here - good email return false; }	// Still here - good email return false; }
Zeile 5488	Zeile 5511
function is_banned_ip($ip_address, $update_lastuse=false) { global $db, $cache;	function is_banned_ip($ip_address, $update_lastuse=false) { global $db, $cache;

$banned_ips = $cache->read("bannedips"); if(!is_array($banned_ips)) { return false; }	$banned_ips = $cache->read("bannedips"); if(!is_array($banned_ips)) { return false; }

foreach($banned_ips as $banned_ip) { if(!$banned_ip['filter']) { continue; }	foreach($banned_ips as $banned_ip) { if(!$banned_ip['filter']) { continue; }

// Make regular expression * match $banned_ip['filter'] = str_replace('\', '(.)', preg_quote($banned_ip['filter'], '#')); if(preg_match("#^{$banned_ip['filter']}$#i", $ip_address))	// Make regular expression * match $banned_ip['filter'] = str_replace('\', '(.)', preg_quote($banned_ip['filter'], '#')); if(preg_match("#^{$banned_ip['filter']}$#i", $ip_address))
Zeile 5619	Zeile 5642
} $post_body = ltrim($post_body, '&'); }	} $post_body = ltrim($post_body, '&'); }

if(function_exists("curl_init")) { $ch = curl_init();	if(function_exists("curl_init")) { $ch = curl_init();
Zeile 5631	Zeile 5654
{ curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_POSTFIELDS, $post_body);	{ curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_POSTFIELDS, $post_body);
}	}
$data = curl_exec($ch); curl_close($ch); return $data; }	$data = curl_exec($ch); curl_close($ch); return $data; }
else if(function_exists("fsockopen"))	else if(function_exists("fsockopen"))
{ $url = @parse_url($url); if(!$url['host'])	{ $url = @parse_url($url); if(!$url['host'])
Zeile 5644	Zeile 5667
return false; } if(!$url['port'])	return false; } if(!$url['port'])
{	{
$url['port'] = 80; } if(!$url['path'])	$url['port'] = 80; } if(!$url['path'])
Zeile 5667	Zeile 5690
$headers[] = "POST {$url['path']} HTTP/1.0"; $headers[] = "Content-Length: ".strlen($post_body); $headers[] = "Content-Type: application/x-www-form-urlencoded";	$headers[] = "POST {$url['path']} HTTP/1.0"; $headers[] = "Content-Length: ".strlen($post_body); $headers[] = "Content-Type: application/x-www-form-urlencoded";
}	}
else { $headers[] = "GET {$url['path']} HTTP/1.0"; }	else { $headers[] = "GET {$url['path']} HTTP/1.0"; }

$headers[] = "Host: {$url['host']}"; $headers[] = "Connection: Close"; $headers[] = '';	$headers[] = "Host: {$url['host']}"; $headers[] = "Connection: Close"; $headers[] = '';

if(!empty($post_body)) { $headers[] = $post_body;	if(!empty($post_body)) { $headers[] = $post_body;
Zeile 5686	Zeile 5709
// If we have no post body, we need to add an empty element to make sure we've got \r\n\r\n before the (non-existent) body starts $headers[] = ''; }	// If we have no post body, we need to add an empty element to make sure we've got \r\n\r\n before the (non-existent) body starts $headers[] = ''; }
$headers = implode("\r\n", $headers);	$headers = implode("\r\n", $headers);
if(!@fwrite($fp, $headers)) { return false;	if(!@fwrite($fp, $headers)) { return false;
Zeile 5717	Zeile 5740
* @return boolean True if a super admin, false if not */ function is_super_admin($uid)	* @return boolean True if a super admin, false if not */ function is_super_admin($uid)
{ global $mybb; $mybb->config['super_admins'] = str_replace(" ", "", $mybb->config['super_admins']); if(my_strpos(",{$mybb->config['super_admins']},", ",{$uid},") === false) {	{ static $super_admins; if(!isset($super_admins)) { global $mybb; $super_admins = str_replace(" ", "", $mybb->config['super_admins']); } if(my_strpos(",{$super_admins},", ",{$uid},") === false) {
return false;	return false;
}	}
else	else
{	{
return true; }	return true; }
	} /** * Prevents super administrators being selected in a SELECT. * * @param boolean Prefix with an AND? * @param string The prefix to add to uid when used in a JOIN (e.g. SELECTing users u would mean using 'u' in this argument). * @return string An addition to the WHERE statement */ function not_super_admins($use_and = false, $uid_prefix = '') { static $super_admins; if(!isset($super_admins)) { global $mybb, $db; $super_admins = $db->escape_string(str_replace(" ", "", $mybb->config['super_admins'])); } if($super_admins) { $sql_where = ''; if($use_and) { $sql_where .= ' AND '; } if($uid_prefix != '') { $sql_where .= $uid_prefix.'.'; } $sql_where .= "uid NOT IN({$super_admins})"; return $sql_where; } return '';
} /**	} /**
Zeile 5767	Zeile 5832
} foreach($quoted_strings as $string) {	} foreach($quoted_strings as $string) {
if($string != "")	if($string != "")
{ if($in_escape) {	{ if($in_escape) {
Zeile 5814	Zeile 5879
if(count($ip_bits) == 4) { return my_ip2long($ip);	if(count($ip_bits) == 4) { return my_ip2long($ip);
} else {	} else {
return array(my_ip2long($ip.".0"), my_ip2long($ip.".255")); } }	return array(my_ip2long($ip.".0"), my_ip2long($ip.".255")); } }
Zeile 5839	Zeile 5904
$sep = "."; } return array(my_ip2long($ip_string1), my_ip2long($ip_string2));	$sep = "."; } return array(my_ip2long($ip_string1), my_ip2long($ip_string2));
} }	} }
/** * Fetch a list of ban times for a user account.	/** * Fetch a list of ban times for a user account.
Zeile 5907	Zeile 5972
function expire_warnings() { global $db;	function expire_warnings() { global $db;

$users = array();	$users = array();

$query = $db->query(" SELECT w.wid, w.uid, w.points, u.warningpoints FROM ".TABLE_PREFIX."warnings w	$query = $db->query(" SELECT w.wid, w.uid, w.points, u.warningpoints FROM ".TABLE_PREFIX."warnings w
Zeile 5922	Zeile 5987
"expired" => 1 ); $db->update_query("warnings", $updated_warning, "wid='{$warning['wid']}'");	"expired" => 1 ); $db->update_query("warnings", $updated_warning, "wid='{$warning['wid']}'");

if(array_key_exists($warning['uid'], $users))	if(array_key_exists($warning['uid'], $users))
{	{
$users[$warning['uid']] -= $warning['points'];	$users[$warning['uid']] -= $warning['points'];
}	}
else { $users[$warning['uid']] = $warning['warningpoints']-$warning['points']; } }	else { $users[$warning['uid']] = $warning['warningpoints']-$warning['points']; } }

foreach($users as $uid => $warningpoints) { if($warningpoints < 0) { $warningpoints = 0; }	foreach($users as $uid => $warningpoints) { if($warningpoints < 0) { $warningpoints = 0; }

$updated_user = array( "warningpoints" => intval($warningpoints) );	$updated_user = array( "warningpoints" => intval($warningpoints) );
Zeile 5961	Zeile 6026
return false; } $old_umask = umask(0);	return false; } $old_umask = umask(0);

// We convert the octal string to a decimal number because passing a octal string doesn't work with chmod // and type casting subsequently removes the prepended 0 which is needed for octal numbers $result = chmod($file, octdec($mode));	// We convert the octal string to a decimal number because passing a octal string doesn't work with chmod // and type casting subsequently removes the prepended 0 which is needed for octal numbers $result = chmod($file, octdec($mode));
Zeile 5978	Zeile 6043
function my_rmdir_recursive($path, $ignore=array()) { global $orig_dir;	function my_rmdir_recursive($path, $ignore=array()) { global $orig_dir;

if(!isset($orig_dir))	if(!isset($orig_dir))
{	{
$orig_dir = $path; }	$orig_dir = $path; }
if(@is_dir($path) && !@is_link($path)) { if($dh = @opendir($path)) { while(($file = @readdir($dh)) !== false) { if($file == '.' \|\| $file == '..' \|\| $file == '.svn' \|\| in_array($path.'/'.$file, $ignore) \|\| !my_rmdir_recursive($path.'/'.$file)) { continue; } } @closedir($dh); }	if(@is_dir($path) && !@is_link($path)) { if($dh = @opendir($path)) { while(($file = @readdir($dh)) !== false) { if($file == '.' \|\| $file == '..' \|\| $file == '.svn' \|\| in_array($path.'/'.$file, $ignore) \|\| !my_rmdir_recursive($path.'/'.$file)) { continue; } } @closedir($dh); }
// Are we done? Don't delete the main folder too and return true if($path == $orig_dir) { return true; }	// Are we done? Don't delete the main folder too and return true if($path == $orig_dir) { return true; }
return @rmdir($path); } return @unlink($path);	return @rmdir($path); } return @unlink($path);
} /**	} /**
Zeile 6023	Zeile 6088
{ $count += count($array2); }	{ $count += count($array2); }

return $count; }	return $count; }
Zeile 6041	Zeile 6106
if(!$ip_long) { $ip_long = sprintf("%u", ip2long($ip));	if(!$ip_long) { $ip_long = sprintf("%u", ip2long($ip));

if(!$ip_long) { return 0; }	if(!$ip_long) { return 0; }
}	}
if($ip_long >= 2147483648) // Won't occur on 32-bit PHP { $ip_long -= 4294967296;	if($ip_long >= 2147483648) // Won't occur on 32-bit PHP { $ip_long -= 4294967296;
}	}
return $ip_long; }	return $ip_long; }
Zeile 6063	Zeile 6128
* @return string IP in IPv4 format */ function my_long2ip($long)	* @return string IP in IPv4 format */ function my_long2ip($long)
{	{
// On 64-bit machines is_int will return true. On 32-bit it will return false if($long < 0 && is_int(2147483648)) {	// On 64-bit machines is_int will return true. On 32-bit it will return false if($long < 0 && is_int(2147483648)) {
Zeile 6083	Zeile 6148
function verify_files($path=MYBB_ROOT, $count=0) { global $mybb, $checksums, $bad_verify_files;	function verify_files($path=MYBB_ROOT, $count=0) { global $mybb, $checksums, $bad_verify_files;

// We don't need to check these types of files $ignore = array(".", "..", ".svn", "config.php", "settings.php", "Thumb.db", "config.default.php", "lock", "htaccess.txt", "logo.gif"); $ignore_ext = array("attach");	// We don't need to check these types of files $ignore = array(".", "..", ".svn", "config.php", "settings.php", "Thumb.db", "config.default.php", "lock", "htaccess.txt", "logo.gif"); $ignore_ext = array("attach");

if(substr($path, -1, 1) == "/")	if(substr($path, -1, 1) == "/")
{	{
$path = substr($path, 0, -1);	$path = substr($path, 0, -1);
}	}
if(!is_array($bad_verify_files))	if(!is_array($bad_verify_files))
{	{
$bad_verify_files = array(); }	$bad_verify_files = array(); }

// Make sure that we're in a directory and it's not a symbolic link	// Make sure that we're in a directory and it's not a symbolic link
if(@is_dir($path) && !@is_link($path)) { if($dh = @opendir($path)) {	if(@is_dir($path) && !@is_link($path)) { if($dh = @opendir($path)) {
// Loop through all the files/directories in this directory	// Loop through all the files/directories in this directory
while(($file = @readdir($dh)) !== false) {	while(($file = @readdir($dh)) !== false) {
if(in_array($file, $ignore) \|\| in_array(get_extension($file), $ignore_ext))	if(in_array($file, $ignore) \|\| in_array(get_extension($file), $ignore_ext))
{ continue; }	{ continue; }
// Recurse through the directory tree if(is_dir($path."/".$file)) { verify_files($path."/".$file, ($count+1)); continue; }	// Recurse through the directory tree if(is_dir($path."/".$file)) { verify_files($path."/".$file, ($count+1)); continue; }

// We only need the last part of the path (from the MyBB directory to the file. i.e. inc/functions.php) $file_path = ".".str_replace(substr(MYBB_ROOT, 0, -1), "", $path)."/".$file;	// We only need the last part of the path (from the MyBB directory to the file. i.e. inc/functions.php) $file_path = ".".str_replace(substr(MYBB_ROOT, 0, -1), "", $path)."/".$file;

// Does this file even exist in our official list? Perhaps it's a plugin if(array_key_exists($file_path, $checksums)) {	// Does this file even exist in our official list? Perhaps it's a plugin if(array_key_exists($file_path, $checksums)) {
Zeile 6130	Zeile 6195
while(!feof($handle)) { $contents .= fread($handle, 8192);	while(!feof($handle)) { $contents .= fread($handle, 8192);
}	}
fclose($handle);	fclose($handle);

$md5 = md5($contents);	$md5 = md5($contents);

// Does it match any of our hashes (unix/windows new lines taken into consideration with the hashes) if(!in_array($md5, $checksums[$file_path]))	// Does it match any of our hashes (unix/windows new lines taken into consideration with the hashes) if(!in_array($md5, $checksums[$file_path]))
{	{
$bad_verify_files[] = array("status" => "changed", "path" => $file_path); } } unset($checksums[$file_path]);	$bad_verify_files[] = array("status" => "changed", "path" => $file_path); } } unset($checksums[$file_path]);
} @closedir($dh); } } if($count == 0) {	} @closedir($dh); } } if($count == 0) {
if(!empty($checksums)) { foreach($checksums as $file_path => $hashes)	if(!empty($checksums)) { foreach($checksums as $file_path => $hashes)
Zeile 6158	Zeile 6223
continue; } $bad_verify_files[] = array("status" => "missing", "path" => $file_path);	continue; } $bad_verify_files[] = array("status" => "missing", "path" => $file_path);
} } }	} } }
// uh oh if($count == 0) {	// uh oh if($count == 0) {
Zeile 6184	Zeile 6249
else { return "+$int";	else { return "+$int";
} }	} }
/** * Returns a securely generated seed for PHP's RNG (Random Number Generator)	/** * Returns a securely generated seed for PHP's RNG (Random Number Generator)
Zeile 6196	Zeile 6261
function secure_seed_rng($count=8) { $output = '';	function secure_seed_rng($count=8) { $output = '';
// Try the unix/linux method if(@is_readable('/dev/urandom') && ($handle = @fopen('/dev/urandom', 'rb'))) { $output = @fread($handle, $count); @fclose($handle);	// DIRECTORY_SEPARATOR checks if running windows if(DIRECTORY_SEPARATOR != '\\') { // Unix/Linux // Use OpenSSL when available if(function_exists('openssl_random_pseudo_bytes')) { $output = openssl_random_pseudo_bytes($count); } // Try mcrypt elseif(function_exists('mcrypt_create_iv')) { $output = mcrypt_create_iv($count, MCRYPT_DEV_URANDOM); } // Try /dev/urandom elseif(@is_readable('/dev/urandom') && ($handle = @fopen('/dev/urandom', 'rb'))) { $output = @fread($handle, $count); @fclose($handle); } } else { // Windows // Use OpenSSL when available // PHP <5.3.4 had a bug which makes that function unusable on Windows if(function_exists('openssl_random_pseudo_bytes') && version_compare(PHP_VERSION, '5.3.4', '>=')) { $output = openssl_random_pseudo_bytes($count); } // Try mcrypt elseif(function_exists('mcrypt_create_iv')) { $output = mcrypt_create_iv($count, MCRYPT_RAND); } // Try Windows CAPICOM before using our own generator elseif(class_exists('COM')) { try { $CAPI_Util = new COM('CAPICOM.Utilities.1'); if(is_callable(array($CAPI_Util, 'GetRandom'))) { $output = $CAPI_Util->GetRandom($count, 0); } } catch (Exception $e) { } }
}	}

// Didn't work? Do we still not have enough bytes? Use our own (less secure) rng generator if(strlen($output) < $count) { $output = '';	// Didn't work? Do we still not have enough bytes? Use our own (less secure) rng generator if(strlen($output) < $count) { $output = '';

// Close to what PHP basically uses internally to seed, but not quite. $unique_state = microtime().@getmypid();	// Close to what PHP basically uses internally to seed, but not quite. $unique_state = microtime().@getmypid();

for($i = 0; $i < $count; $i += 16) { $unique_state = md5(microtime().$unique_state); $output .= pack('H*', md5($unique_state));	for($i = 0; $i < $count; $i += 16) { $unique_state = md5(microtime().$unique_state); $output .= pack('H*', md5($unique_state));
}	}
}	}

// /dev/urandom and openssl will always be twice as long as $count. base64_encode will roughly take up 33% more space but crc32 will put it to 32 characters $output = hexdec(substr(dechex(crc32(base64_encode($output))), 0, $count));	// /dev/urandom and openssl will always be twice as long as $count. base64_encode will roughly take up 33% more space but crc32 will put it to 32 characters $output = hexdec(substr(dechex(crc32(base64_encode($output))), 0, $count));

return $output; } /** * Wrapper function for mt_rand. Automatically seeds using a secure seed once. *	return $output; } /** * Wrapper function for mt_rand. Automatically seeds using a secure seed once. *
* @param int Optional lowest value to be returned (default: 0) * @param int Optional highest value to be returned (default: mt_getrandmax())	* @param int Optional lowest value to be returned (default: 0) * @param int Optional highest value to be returned (default: mt_getrandmax())
* @param boolean True forces it to reseed the RNG first * @return int An integer equivalent of a secure hexadecimal seed */	* @param boolean True forces it to reseed the RNG first * @return int An integer equivalent of a secure hexadecimal seed */
Zeile 6244	Zeile 6351
$seeded = true; $obfuscator = abs((int) secure_seed_rng());	$seeded = true; $obfuscator = abs((int) secure_seed_rng());

// Ensure that $obfuscator is <= mt_getrandmax() for 64 bit systems. if($obfuscator > mt_getrandmax()) {	// Ensure that $obfuscator is <= mt_getrandmax() for 64 bit systems. if($obfuscator > mt_getrandmax()) {
Zeile 6256	Zeile 6363
{ $distance = $max - $min; if ($distance > 0)	{ $distance = $max - $min; if ($distance > 0)
{	{
return $min + (int)((float)($distance + 1) * (float)(mt_rand() ^ $obfuscator) / (mt_getrandmax() + 1));	return $min + (int)((float)($distance + 1) * (float)(mt_rand() ^ $obfuscator) / (mt_getrandmax() + 1));
}	}
else { return mt_rand($min, $max); }	else { return mt_rand($min, $max); }
}	}
else { $val = mt_rand() ^ $obfuscator;	else { $val = mt_rand() ^ $obfuscator;
Zeile 6287	Zeile 6394
0x0A => 1, 0x0D => 1, 0x0B => 1,	0x0A => 1, 0x0D => 1, 0x0B => 1,
0xAD => 1,	0xAD => 1,
0xA0 => 1, 0xAD => 1, 0xBF => 1,	0xA0 => 1, 0xAD => 1, 0xBF => 1,
Zeile 6306	Zeile 6413
0xBE => array(0xA0 => 1), // \x{FFA0} 0xBF => array(0xB9 => 1, 0xBA => 1, 0xBB => 1)), // \x{FFF9} to \x{FFFB} );	0xBE => array(0xA0 => 1), // \x{FFA0} 0xBF => array(0xB9 => 1, 0xBA => 1, 0xBB => 1)), // \x{FFF9} to \x{FFFB} );

$hex_chrs_rev = array( 0x20 => 1, 0x09 => 1,	$hex_chrs_rev = array( 0x20 => 1, 0x09 => 1,
Zeile 6352	Zeile 6459
0xBA => array(0xBF => array(0xEF => 1)), // \x{FFFA} 0xBB => array(0xBF => array(0xEF => 1)), // \x{FFFB} );	0xBA => array(0xBF => array(0xEF => 1)), // \x{FFFA} 0xBB => array(0xBF => array(0xEF => 1)), // \x{FFFB} );

// Start from the beginning and work our way in do { // Check to see if we have matched a first character in our utf-16 array $offset = match_sequence($string, $hex_chrs);	// Start from the beginning and work our way in do { // Check to see if we have matched a first character in our utf-16 array $offset = match_sequence($string, $hex_chrs);
if(!$offset) { // If not, then we must have a "good" character and we don't need to do anymore processing break; } $string = substr($string, $offset); }	if(!$offset) { // If not, then we must have a "good" character and we don't need to do anymore processing break; } $string = substr($string, $offset); }
while(++$i);	while(++$i);

// Start from the end and work our way in $string = strrev($string); do	// Start from the end and work our way in $string = strrev($string); do
Zeile 6377	Zeile 6484
{ // If not, then we must have a "good" character and we don't need to do anymore processing break;	{ // If not, then we must have a "good" character and we don't need to do anymore processing break;
}	}
$string = substr($string, $offset); } while(++$i); $string = strrev($string);	$string = substr($string, $offset); } while(++$i); $string = strrev($string);

if($charlist !== false) { $string = trim($string, $charlist);	if($charlist !== false) { $string = trim($string, $charlist);
Zeile 6391	Zeile 6498
{ $string = trim($string); }	{ $string = trim($string); }

return $string; }	return $string; }

function match_sequence($string, $array, $i=0, $n=0) { if($string === "") { return 0; }	function match_sequence($string, $array, $i=0, $n=0) { if($string === "") { return 0; }

$ord = ord($string[$i]); if(array_key_exists($ord, $array)) {	$ord = ord($string[$i]); if(array_key_exists($ord, $array)) {
Zeile 6414	Zeile 6521
} return $n; }	} return $n; }

return 0;	return 0;
}	}
/** * Obtain the version of GD installed.	/** * Obtain the version of GD installed.
Zeile 6426	Zeile 6533
function gd_version() { static $gd_version;	function gd_version() { static $gd_version;

if($gd_version)	if($gd_version)
{	{
return $gd_version;	return $gd_version;
}	}
if(!extension_loaded('gd'))	if(!extension_loaded('gd'))
{	{
return;	return;
}	}
if(function_exists("gd_info"))	if(function_exists("gd_info"))
{	{
$gd_info = gd_info();	$gd_info = gd_info();
preg_match('/\d/', $gd_info['GD Version'], $gd); $gd_version = $gd[0]; } else {	preg_match('/\d/', $gd_info['GD Version'], $gd); $gd_version = $gd[0]; } else {
ob_start(); phpinfo(8); $info = ob_get_contents();	ob_start(); phpinfo(8); $info = ob_get_contents();
Zeile 6452	Zeile 6559
preg_match('/\d/', $info, $gd); $gd_version = $gd[0]; }	preg_match('/\d/', $info, $gd); $gd_version = $gd[0]; }

return $gd_version;	return $gd_version;
}	}

	/** * Validates an UTF-8 string. * * @param string The string to be checked * @param boolean Allow 4 byte UTF-8 characters? * @param boolean Return the cleaned string? * @return string/boolean Cleaned string or boolean */ function validate_utf8_string($input, $allow_mb4=true, $return=true) { // Valid UTF-8 sequence? if(!preg_match('##u', $input)) { $string = ''; $len = strlen($input); for($i = 0; $i < $len; $i++) { $c = ord($input[$i]); if($c > 128) { if($c > 247 \|\| $c <= 191) { if($return) { $string .= '?'; continue; } else { return false; } } elseif($c > 239) { $bytes = 4; } elseif($c > 223) { $bytes = 3; } elseif($c > 191) { $bytes = 2; } if(($i + $bytes) > $len) { if($return) { $string .= '?'; break; } else { return false; } } $valid = true; $multibytes = $input[$i]; while($bytes > 1) { $i++; $b = ord($input[$i]); if($b < 128 \|\| $b > 191) { if($return) { $valid = false; $string .= '?'; break; } else { return false; } } else { $multibytes .= $input[$i]; } $bytes--; } if($valid) { $string .= $multibytes; } } else { $string .= $input[$i]; } } $input = $string; } if($return) { if($allow_mb4) { return $input; } else { return preg_replace("#[^\\x00-\\x7F][\\x80-\\xBF]{3,}#", '?', $input); } } else { if($allow_mb4) { return true; } else { return !preg_match("#[^\\x00-\\x7F][\\x80-\\xBF]{3,}#", $input); } } }
?>	?>