Vergleich inc/functions.php - 1.6.0 - 1.6.15

Keine Änderungen Hinzugefügt Modifiziert Entfernt
Zeile 6	Zeile 6
* Website: http://mybb.com * License: http://mybb.com/about/license *	* Website: http://mybb.com * License: http://mybb.com/about/license *
* $Id: functions.php 5172 2010-08-02 23:13:03Z RyanGordon $	* $Id$
/ /*	/ /*
Zeile 21	Zeile 21
$contents = parse_page($contents); $totaltime = $maintimer->stop();	$contents = parse_page($contents); $totaltime = $maintimer->stop();
	$contents = $plugins->run_hooks("pre_output_page", $contents);
if($mybb->usergroup['cancp'] == 1) {	if($mybb->usergroup['cancp'] == 1) {
Zeile 46	Zeile 47
$serverload = get_server_load(); if(my_strpos(getenv("REQUEST_URI"), "?"))	$serverload = get_server_load(); if(my_strpos(getenv("REQUEST_URI"), "?"))
{ $debuglink = htmlspecialchars(getenv("REQUEST_URI")) . "&debug=1"; } else { $debuglink = htmlspecialchars(getenv("REQUEST_URI")) . "?debug=1"; } if($mybb->settings['gzipoutput'] != 0) { $gzipen = "Enabled"; } else {	{ $debuglink = htmlspecialchars_uni(getenv("REQUEST_URI")) . "&debug=1"; } else { $debuglink = htmlspecialchars_uni(getenv("REQUEST_URI")) . "?debug=1"; } if($mybb->settings['gzipoutput'] != 0) { $gzipen = "Enabled"; } else {
$gzipen = "Disabled";	$gzipen = "Disabled";
}	} $memory_usage = get_memory_usage(); if($memory_usage) { $memory_usage = " / Memory Usage: ".get_friendly_size($memory_usage); } else { $memory_usage = ''; } // MySQLi is still MySQL, so present it that way to the user $database_server = $db->short_title;

if(function_exists("memory_get_usage"))	if($database_server == 'MySQLi')
{	{
$memory_usage = " / Memory Usage: ".get_friendly_size(memory_get_peak_usage(true));	$database_server = 'MySQL';
}	}

$other = "PHP version: $phpversion / Server Load: $serverload / GZip Compression: $gzipen";	$other = "PHP version: $phpversion / Server Load: $serverload / GZip Compression: $gzipen";
$debugstuff = "Generated in $totaltime seconds ($percentphp% PHP / $percentsql% MySQL)<br />SQL Queries: $db->query_count / Global Parsing Time: $globaltime$memory_usage<br />$other<br />[<a href=\"$debuglink\" target=\"_blank\">advanced details</a>]<br />";	$debugstuff = "Generated in $totaltime seconds ($percentphp% PHP / $percentsql% ".$database_server.")<br />SQL Queries: $db->query_count / Global Parsing Time: $globaltime$memory_usage<br />$other<br />[<a href=\"$debuglink\" target=\"_blank\">advanced details</a>]<br />";
$contents = str_replace("<debugstuff>", $debugstuff, $contents); }	$contents = str_replace("<debugstuff>", $debugstuff, $contents); }
Zeile 80	Zeile 93
} $contents = str_replace("<debugstuff>", "", $contents);	} $contents = str_replace("<debugstuff>", "", $contents);
$contents = $plugins->run_hooks("pre_output_page", $contents);
if($mybb->settings['gzipoutput'] == 1) { $contents = gzip_encode($contents, $mybb->settings['gziplevel']); }	if($mybb->settings['gzipoutput'] == 1) { $contents = gzip_encode($contents, $mybb->settings['gziplevel']); }

@header("Content-type: text/html; charset={$lang->settings['charset']}");	@header("Content-type: text/html; charset={$lang->settings['charset']}");

echo $contents; $plugins->run_hooks("post_output_page");	echo $contents; $plugins->run_hooks("post_output_page");
// If the use shutdown functionality is turned off, run any shutdown related items now. if($mybb->settings['useshutdownfunc'] == 0 && $mybb->use_shutdown != true) { run_shutdown(); }
} /**	} /**
Zeile 110	Zeile 116
function add_shutdown($name, $arguments=array()) { global $shutdown_functions;	function add_shutdown($name, $arguments=array()) { global $shutdown_functions;
	if(!is_array($shutdown_functions)) { $shutdown_functions = array(); }
if(!is_array($arguments)) { $arguments = array($arguments); } if(is_array($name) && method_exists($name[0], $name[1]))	if(!is_array($arguments)) { $arguments = array($arguments); } if(is_array($name) && method_exists($name[0], $name[1]))
{ $shutdown_functions["class_".get_class($name[0])."_".$name[1]] = array('function' => $name, 'arguments' => $arguments); return true; }	{ $shutdown_functions[] = array('function' => $name, 'arguments' => $arguments); return true; }
else if(!is_array($name) && function_exists($name)) {	else if(!is_array($name) && function_exists($name)) {
$shutdown_functions[$name] = array('function' => $name, 'arguments' => $arguments);	$shutdown_functions[] = array('function' => $name, 'arguments' => $arguments);
return true; }	return true; }
Zeile 152	Zeile 163
// Load the settings require MYBB_ROOT."inc/settings.php"; $mybb->settings = &$settings;	// Load the settings require MYBB_ROOT."inc/settings.php"; $mybb->settings = &$settings;
}	}
// If our DB has been deconstructed already (bad PHP 5.2.0), reconstruct if(!is_object($db)) {	// If our DB has been deconstructed already (bad PHP 5.2.0), reconstruct if(!is_object($db)) {
Zeile 162	Zeile 173
{ require MYBB_ROOT."inc/config.php"; }	{ require MYBB_ROOT."inc/config.php"; }

if(isset($config)) { require_once MYBB_ROOT."inc/db_".$config['database']['type'].".php";	if(isset($config)) { require_once MYBB_ROOT."inc/db_".$config['database']['type'].".php";
Zeile 180	Zeile 191
default: $db = new DB_MySQL; }	default: $db = new DB_MySQL; }

$db->connect($config['database']); define("TABLE_PREFIX", $config['database']['table_prefix']); $db->set_table_prefix(TABLE_PREFIX);	$db->connect($config['database']); define("TABLE_PREFIX", $config['database']['table_prefix']); $db->set_table_prefix(TABLE_PREFIX);
Zeile 190	Zeile 201
// Cache object deconstructed? reconstruct if(!is_object($cache))	// Cache object deconstructed? reconstruct if(!is_object($cache))
{	{
require_once MYBB_ROOT."inc/class_datacache.php"; $cache = new datacache; $cache->cache(); } // And finally.. plugins	require_once MYBB_ROOT."inc/class_datacache.php"; $cache = new datacache; $cache->cache(); } // And finally.. plugins
if(!is_object($plugins) && !defined("NO_PLUGINS"))	if(!is_object($plugins) && !defined("NO_PLUGINS") && !($mybb->settings['no_plugins'] == 1))
{ require_once MYBB_ROOT."inc/class_plugins.php"; $plugins = new pluginSystem;	{ require_once MYBB_ROOT."inc/class_plugins.php"; $plugins = new pluginSystem;
Zeile 211	Zeile 222
foreach($shutdown_queries as $query) { $db->query($query);	foreach($shutdown_queries as $query) { $db->query($query);
} }	} }
// Run any shutdown functions if we have them if(is_array($shutdown_functions)) {	// Run any shutdown functions if we have them if(is_array($shutdown_functions)) {
Zeile 224	Zeile 235
} $done_shutdown = true;	} $done_shutdown = true;
}	}
/** * Sends a specified amount of messages from the mail queue	/** * Sends a specified amount of messages from the mail queue
Zeile 234	Zeile 245
function send_mail_queue($count=10) { global $db, $cache, $plugins;	function send_mail_queue($count=10) { global $db, $cache, $plugins;

$plugins->run_hooks("send_mail_queue_start"); // Check to see if the mail queue has messages needing to be sent	$plugins->run_hooks("send_mail_queue_start"); // Check to see if the mail queue has messages needing to be sent
Zeile 246	Zeile 257
// Fetch emails for this page view - and send them $query = $db->simple_select("mailqueue", "*", "", array("order_by" => "mid", "order_dir" => "asc", "limit_start" => 0, "limit" => $count));	// Fetch emails for this page view - and send them $query = $db->simple_select("mailqueue", "*", "", array("order_by" => "mid", "order_dir" => "asc", "limit_start" => 0, "limit" => $count));
$plugins->run_hooks_by_ref("send_mail_queue_mail", $query);
while($email = $db->fetch_array($query)) { // Delete the message from the queue $db->delete_query("mailqueue", "mid='{$email['mid']}'");	while($email = $db->fetch_array($query)) { // Delete the message from the queue $db->delete_query("mailqueue", "mid='{$email['mid']}'");
my_mail($email['mailto'], $email['subject'], $email['message'], $email['mailfrom'], "", $email['headers']);	if($db->affected_rows() == 1) { my_mail($email['mailto'], $email['subject'], $email['message'], $email['mailfrom'], "", $email['headers'], true); }
} // Update the mailqueue cache and remove the lock $cache->update_mailqueue(TIME_NOW, 0);	} // Update the mailqueue cache and remove the lock $cache->update_mailqueue(TIME_NOW, 0);
Zeile 284	Zeile 296
{ $contents = "<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\">\n".$contents; }	{ $contents = "<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\">\n".$contents; }
$contents = str_replace("<html", "<html xmlns=\"http://www.w3.org/1999/xhtml\"", $contents);	$contents = str_replace("<html", "<html xmlns=\"http://www.w3.org/1999/xhtml\"", $contents);
if($lang->settings['rtl'] == 1) { $contents = str_replace("<html", "<html dir=\"rtl\"", $contents);	if($lang->settings['rtl'] == 1) { $contents = str_replace("<html", "<html dir=\"rtl\"", $contents);
}	}
if($lang->settings['htmllang'])	if($lang->settings['htmllang'])
{	{
$contents = str_replace("<html", "<html xml:lang=\"".$lang->settings['htmllang']."\" lang=\"".$lang->settings['htmllang']."\"", $contents);	$contents = str_replace("<html", "<html xml:lang=\"".$lang->settings['htmllang']."\" lang=\"".$lang->settings['htmllang']."\"", $contents);
}	}
if($error_handler->warnings) { $contents = str_replace("<body>", "<body>\n".$error_handler->show_warnings(), $contents); }	if($error_handler->warnings) { $contents = str_replace("<body>", "<body>\n".$error_handler->show_warnings(), $contents); }

return $contents; }	return $contents; }
Zeile 327	Zeile 339
if(!$offset && $offset != '0') {	if(!$offset && $offset != '0') {
if($mybb->user['uid'] != 0 && array_key_exists("timezone", $mybb->user))	if(isset($mybb->user['uid']) && $mybb->user['uid'] != 0 && array_key_exists("timezone", $mybb->user))
{ $offset = $mybb->user['timezone']; $dstcorrection = $mybb->user['dst'];	{ $offset = $mybb->user['timezone']; $dstcorrection = $mybb->user['dst'];
Zeile 358	Zeile 370
{ $offset = 0; }	{ $offset = 0; }

if($adodb == true && function_exists('adodb_date')) { $date = adodb_date($format, $stamp + ($offset * 3600));	if($adodb == true && function_exists('adodb_date')) { $date = adodb_date($format, $stamp + ($offset * 3600));
Zeile 367	Zeile 379
{ $date = gmdate($format, $stamp + ($offset * 3600)); }	{ $date = gmdate($format, $stamp + ($offset * 3600)); }

if($mybb->settings['dateformat'] == $format && $ty)	if($mybb->settings['dateformat'] == $format && $ty)
{	{
$stamp = TIME_NOW;	$stamp = TIME_NOW;

if($adodb == true && function_exists('adodb_date')) { $todaysdate = adodb_date($format, $stamp + ($offset * 3600));	if($adodb == true && function_exists('adodb_date')) { $todaysdate = adodb_date($format, $stamp + ($offset * 3600));
Zeile 395	Zeile 407
if(is_object($plugins)) {	if(is_object($plugins)) {
$plugins->run_hooks_by_ref("my_date", $date);	$date = $plugins->run_hooks("my_date", $date);
} return $date;	} return $date;
} /**	} /**
* Sends an email using PHP's mail function, formatting it appropriately. * * @param string Address the email should be addressed to.	* Sends an email using PHP's mail function, formatting it appropriately. * * @param string Address the email should be addressed to.
Zeile 418	Zeile 430
{ global $mybb; static $mail;	{ global $mybb; static $mail;

// Does our object not exist? Create it if(!is_object($mail)) { require_once MYBB_ROOT."inc/class_mailhandler.php";	// Does our object not exist? Create it if(!is_object($mail)) { require_once MYBB_ROOT."inc/class_mailhandler.php";

if($mybb->settings['mail_handler'] == 'smtp') { require_once MYBB_ROOT."inc/mailhandlers/smtp.php";	if($mybb->settings['mail_handler'] == 'smtp') { require_once MYBB_ROOT."inc/mailhandlers/smtp.php";
Zeile 433	Zeile 445
{ require_once MYBB_ROOT."inc/mailhandlers/php.php"; $mail = new PhpMail();	{ require_once MYBB_ROOT."inc/mailhandlers/php.php"; $mail = new PhpMail();
}	}
}	}

// Using SMTP based mail if($mybb->settings['mail_handler'] == 'smtp') { if($keep_alive == true) { $mail->keep_alive = true;	// Using SMTP based mail if($mybb->settings['mail_handler'] == 'smtp') { if($keep_alive == true) { $mail->keep_alive = true;
}	}
}	}

// Using PHP based mail() else {	// Using PHP based mail() else {
Zeile 453	Zeile 465
$mail->additional_parameters = $mybb->settings['mail_parameters']; } }	$mail->additional_parameters = $mybb->settings['mail_parameters']; } }

// Build and send $mail->build_message($to, $subject, $message, $from, $charset, $headers, $format, $message_text, $return_email); return $mail->send();	// Build and send $mail->build_message($to, $subject, $message, $from, $charset, $headers, $format, $message_text, $return_email); return $mail->send();
Zeile 466	Zeile 478
*/ function generate_post_check() {	*/ function generate_post_check() {
global $mybb;	global $mybb, $session;
if($mybb->user['uid']) { return md5($mybb->user['loginkey'].$mybb->user['salt'].$mybb->user['regdate']);	if($mybb->user['uid']) { return md5($mybb->user['loginkey'].$mybb->user['salt'].$mybb->user['regdate']);
Zeile 474	Zeile 486
// Guests get a special string else {	// Guests get a special string else {
return md5($mybb->settings['bburl'].$mybb->config['database']['username'].$mybb->settings['internal']['encryption_key']);	return md5($session->useragent.$mybb->config['database']['username'].$mybb->settings['internal']['encryption_key']);
} }	} }
Zeile 576	Zeile 588
function cache_forums($force=false) { global $forum_cache, $cache;	function cache_forums($force=false) { global $forum_cache, $cache;

if($force == true) { $forum_cache = $cache->read("forums", 1);	if($force == true) { $forum_cache = $cache->read("forums", 1);
Zeile 621	Zeile 633
{ return; }	{ return; }

foreach($forums_by_parent[$fid] as $forum) { $forums[] = $forum['fid'];	foreach($forums_by_parent[$fid] as $forum) { $forums[] = $forum['fid'];
Zeile 644	Zeile 656
{ global $header, $footer, $theme, $headerinclude, $db, $templates, $lang, $mybb, $plugins;	{ global $header, $footer, $theme, $headerinclude, $db, $templates, $lang, $mybb, $plugins;
$plugins->run_hooks_by_ref("error", $error);	$error = $plugins->run_hooks("error", $error);
if(!$error) { $error = $lang->unknown_error;	if(!$error) { $error = $lang->unknown_error;
Zeile 731	Zeile 743
"location2" => 0 );	"location2" => 0 );
$db->update_query("sessions", $noperm_array, "sid='{$session->sid}'", 1); $url = htmlspecialchars_uni("http://".$_SERVER['SERVER_NAME'].$_SERVER['REQUEST_URI']);	$db->update_query("sessions", $noperm_array, "sid='{$session->sid}'");
if($mybb->input['ajax']) {	if($mybb->input['ajax']) {
Zeile 749	Zeile 760
} else {	} else {
	// Redirect to where the user came from $redirect_url = $_SERVER['PHP_SELF']; if($_SERVER['QUERY_STRING']) { $redirect_url .= '?'.$_SERVER['QUERY_STRING']; } $redirect_url = htmlspecialchars_uni($redirect_url); switch($mybb->settings['username_method']) { case 0: $lang_username = $lang->username; break; case 1: $lang_username = $lang->username1; break; case 2: $lang_username = $lang->username2; break; default: $lang_username = $lang->username; break; }
eval("\$errorpage = \"".$templates->get("error_nopermission")."\";"); }	eval("\$errorpage = \"".$templates->get("error_nopermission")."\";"); }

error($errorpage); }	error($errorpage); }
Zeile 766	Zeile 801
global $header, $footer, $mybb, $theme, $headerinclude, $templates, $lang, $plugins; $redirect_args = array('url' => &$url, 'message' => &$message, 'title' => &$title);	global $header, $footer, $mybb, $theme, $headerinclude, $templates, $lang, $plugins; $redirect_args = array('url' => &$url, 'message' => &$message, 'title' => &$title);
$plugins->run_hooks_by_ref("redirect", $redirect_args);	$plugins->run_hooks("redirect", $redirect_args);
if($mybb->input['ajax']) {	if($mybb->input['ajax']) {
Zeile 798	Zeile 833
{ $title = $mybb->settings['bbname']; }	{ $title = $mybb->settings['bbname']; }

// Show redirects only if both ACP and UCP settings are enabled, or ACP is enabled, and user is a guest. if($mybb->settings['redirects'] == 1 && ($mybb->user['showredirect'] != 0 \|\| !$mybb->user['uid'])) { $url = str_replace("&", "&", $url);	// Show redirects only if both ACP and UCP settings are enabled, or ACP is enabled, and user is a guest. if($mybb->settings['redirects'] == 1 && ($mybb->user['showredirect'] != 0 \|\| !$mybb->user['uid'])) { $url = str_replace("&", "&", $url);
$url = htmlspecialchars($url);	$url = htmlspecialchars_uni($url);
eval("\$redirectpage = \"".$templates->get("redirect")."\";"); output_page($redirectpage);	eval("\$redirectpage = \"".$templates->get("redirect")."\";"); output_page($redirectpage);
Zeile 814	Zeile 849
$url = str_replace(array("\n","\r",";"), "", $url); run_shutdown();	$url = str_replace(array("\n","\r",";"), "", $url); run_shutdown();
if(my_substr($url, 0, 7) !== 'http://')	if(my_substr($url, 0, 7) !== 'http://' && my_substr($url, 0, 8) !== 'https://' && my_substr($url, 0, 1) !== '/')
{ header("Location: {$mybb->settings['bburl']}/{$url}");	{ header("Location: {$mybb->settings['bburl']}/{$url}");
}	}
else { header("Location: {$url}"); }	else { header("Location: {$url}"); }
}	}
exit; }	exit; }
Zeile 845	Zeile 880
{ return; }	{ return; }

$url = str_replace("&", "&", $url); $url = htmlspecialchars_uni($url); $pages = ceil($count / $perpage);	$url = str_replace("&", "&", $url); $url = htmlspecialchars_uni($url); $pages = ceil($count / $perpage);
	$prevpage = '';
if($page > 1) { $prev = $page-1;	if($page > 1) { $prev = $page-1;
Zeile 888	Zeile 924
$to = $pages; }	$to = $pages; }
	$start = '';
if($from > 1) { if($from-1 == 1)	if($from > 1) { if($from-1 == 1)
Zeile 899	Zeile 936
eval("\$start = \"".$templates->get("multipage_start")."\";"); }	eval("\$start = \"".$templates->get("multipage_start")."\";"); }
	$mppage = '';
for($i = $from; $i <= $to; ++$i) { $page_url = fetch_page_url($url, $i);	for($i = $from; $i <= $to; ++$i) { $page_url = fetch_page_url($url, $i);
Zeile 919	Zeile 957
} }	} }
	$end = '';
if($to < $pages) { if($to+1 == $pages)	if($to < $pages) { if($to+1 == $pages)
Zeile 930	Zeile 969
eval("\$end = \"".$templates->get("multipage_end")."\";"); }	eval("\$end = \"".$templates->get("multipage_end")."\";"); }
	$nextpage = '';
if($page < $pages) { $next = $page+1; $page_url = fetch_page_url($url, $next); eval("\$nextpage = \"".$templates->get("multipage_nextpage")."\";"); }	if($page < $pages) { $next = $page+1; $page_url = fetch_page_url($url, $next); eval("\$nextpage = \"".$templates->get("multipage_nextpage")."\";"); }

$lang->multipage_pages = $lang->sprintf($lang->multipage_pages, $pages);	$lang->multipage_pages = $lang->sprintf($lang->multipage_pages, $pages);

if($breadcrumb == true) { eval("\$multipage = \"".$templates->get("multipage_breadcrumb")."\";");	if($breadcrumb == true) { eval("\$multipage = \"".$templates->get("multipage_breadcrumb")."\";");
Zeile 958	Zeile 999
*/ function fetch_page_url($url, $page) {	*/ function fetch_page_url($url, $page) {
// If no page identifier is specified we tack it on to the end of the URL if(strpos($url, "{page}") === false)	if($page <= 1)
{	{
	$find = array( "-page-{page}", "&page={page}", "{page}" ); // Remove "Page 1" to the defacto URL $url = str_replace($find, array("", "", $page), $url); return $url; } else if(strpos($url, "{page}") === false) { // If no page identifier is specified we tack it on to the end of the URL
if(strpos($url, "?") === false)	if(strpos($url, "?") === false)
{	{
$url .= "?"; } else { $url .= "&"; }	$url .= "?"; } else { $url .= "&"; }

$url .= "page=$page";	$url .= "page=$page";
}	}
else { $url = str_replace("{page}", $page, $url); }	else { $url = str_replace("{page}", $page, $url); }

return $url; }	return $url; }
Zeile 999	Zeile 1054
{ // We've already cached permissions for this user, return them. if($user_cache[$uid]['permissions'])	{ // We've already cached permissions for this user, return them. if($user_cache[$uid]['permissions'])
{	{
return $user_cache[$uid]['permissions']; }	return $user_cache[$uid]['permissions']; }
Zeile 1019	Zeile 1074
} // This user is the current user, return their permissions else	} // This user is the current user, return their permissions else
{	{
return $mybb->usergroup; } }	return $mybb->usergroup; } }
Zeile 1037	Zeile 1092
if(!is_array($groupscache)) { $groupscache = $cache->read("usergroups");	if(!is_array($groupscache)) { $groupscache = $cache->read("usergroups");
} $groups = explode(",", $gid);	} $groups = explode(",", $gid);
if(count($groups) == 1)	if(count($groups) == 1)
{	{
return $groupscache[$gid]; }	return $groupscache[$gid]; }

foreach($groups as $gid) { if(trim($gid) == "" \|\| !$groupscache[$gid])	foreach($groups as $gid) { if(trim($gid) == "" \|\| !$groupscache[$gid])
{ continue; }	{ continue; }
foreach($groupscache[$gid] as $perm => $access) { if(!in_array($perm, $grouppermignore))	foreach($groupscache[$gid] as $perm => $access) { if(!in_array($perm, $grouppermignore))
Zeile 1072	Zeile 1127
{ $usergroup[$perm] = 0; continue;	{ $usergroup[$perm] = 0; continue;
}	}
if($access > $permbit \|\| ($access == "yes" && $permbit == "no") \|\| !$permbit) // Keep yes/no for compatibility? {	if($access > $permbit \|\| ($access == "yes" && $permbit == "no") \|\| !$permbit) // Keep yes/no for compatibility? {
Zeile 1083	Zeile 1138
} return $usergroup;	} return $usergroup;
} /**	} /**
* Fetch the display group properties for a specific display group * * @param int The group ID to fetch the display properties for	* Fetch the display group properties for a specific display group * * @param int The group ID to fetch the display properties for
Zeile 1106	Zeile 1161
foreach($displaygroupfields as $field) { $displaygroup[$field] = $group[$field];	foreach($displaygroupfields as $field) { $displaygroup[$field] = $group[$field];
}	}
return $displaygroup; }	return $displaygroup; }
Zeile 1136	Zeile 1191
{ $query = $db->simple_select("users", "*", "uid='$uid'"); $usercache[$uid] = $db->fetch_array($query);	{ $query = $db->simple_select("users", "*", "uid='$uid'"); $usercache[$uid] = $db->fetch_array($query);
}	}
$gid = $usercache[$uid]['usergroup'].",".$usercache[$uid]['additionalgroups']; $groupperms = usergroup_permissions($gid);	$gid = $usercache[$uid]['usergroup'].",".$usercache[$uid]['additionalgroups']; $groupperms = usergroup_permissions($gid);
Zeile 1146	Zeile 1201
$gid = $mybb->user['usergroup']; if(isset($mybb->user['additionalgroups']))	$gid = $mybb->user['usergroup']; if(isset($mybb->user['additionalgroups']))
{	{
$gid .= ",".$mybb->user['additionalgroups']; }	$gid .= ",".$mybb->user['additionalgroups']; }
Zeile 1165	Zeile 1220
} if(!is_array($fpermcache))	} if(!is_array($fpermcache))
{	{
$fpermcache = $cache->read("forumpermissions"); }	$fpermcache = $cache->read("forumpermissions"); }
Zeile 1204	Zeile 1259
global $groupscache, $forum_cache, $fpermcache, $mybb, $fpermfields; $groups = explode(",", $gid);	global $groupscache, $forum_cache, $fpermcache, $mybb, $fpermfields; $groups = explode(",", $gid);
if(!$fpermcache[$fid]) // This forum has no custom or inherited permissions so lets just return the group permissions	if(empty($fpermcache[$fid])) // This forum has no custom or inherited permissions so lets just return the group permissions
{ return $groupperms; }	{ return $groupperms; }

$current_permissions = array();	$current_permissions = array();
	$only_view_own_threads = 1;
foreach($groups as $gid) { if($groupscache[$gid]) { $level_permissions = $fpermcache[$fid][$gid];	foreach($groups as $gid) { if($groupscache[$gid]) { $level_permissions = $fpermcache[$fid][$gid];

// If our permissions arn't inherited we need to figure them out if(empty($level_permissions)) {	// If our permissions arn't inherited we need to figure them out if(empty($level_permissions)) {
Zeile 1233	Zeile 1289
break; } }	break; } }

// If we STILL don't have forum permissions we use the usergroup itself if(empty($level_permissions)) { $level_permissions = $groupscache[$gid];	// If we STILL don't have forum permissions we use the usergroup itself if(empty($level_permissions)) { $level_permissions = $groupscache[$gid];
}	}
} }	} }

foreach($level_permissions as $permission => $access) { if($access >= $current_permissions[$permission] \|\| ($access == "yes" && $current_permissions[$permission] == "no") \|\| !$current_permissions[$permission]) { $current_permissions[$permission] = $access; }	foreach($level_permissions as $permission => $access) { if($access >= $current_permissions[$permission] \|\| ($access == "yes" && $current_permissions[$permission] == "no") \|\| !$current_permissions[$permission]) { $current_permissions[$permission] = $access; }
	} if($level_permissions["canview"] && !$level_permissions["canonlyviewownthreads"]) { $only_view_own_threads = 0;
} }	} }
	} // Figure out if we can view more than our own threads if($only_view_own_threads == 0) { $current_permissions["canonlyviewownthreads"] = 0;
} if(count($current_permissions) == 0)	} if(count($current_permissions) == 0)
Zeile 1268	Zeile 1335
function check_forum_password($fid, $pid=0) { global $mybb, $header, $footer, $headerinclude, $theme, $templates, $lang, $forum_cache;	function check_forum_password($fid, $pid=0) { global $mybb, $header, $footer, $headerinclude, $theme, $templates, $lang, $forum_cache;

$showform = true;	$showform = true;

if(!is_array($forum_cache)) { $forum_cache = cache_forums();	if(!is_array($forum_cache)) { $forum_cache = cache_forums();
Zeile 1291	Zeile 1358
{ continue; }	{ continue; }

if($forum_cache[$parent_id]['password'] != "")	if($forum_cache[$parent_id]['password'] != "")
{	{
check_forum_password($parent_id, $fid); } } }	check_forum_password($parent_id, $fid); } } }

$password = $forum_cache[$fid]['password']; if($password) {	$password = $forum_cache[$fid]['password']; if($password) {
Zeile 1312	Zeile 1379
else { eval("\$pwnote = \"".$templates->get("forumdisplay_password_wrongpass")."\";");	else { eval("\$pwnote = \"".$templates->get("forumdisplay_password_wrongpass")."\";");
$showform = true;	$showform = true;
} } else	} } else
Zeile 1328	Zeile 1395
} } else	} } else
{ $showform = false; }	{ $showform = false; }
if($showform) {	if($showform) {
Zeile 1339	Zeile 1406
header("Location: ".$mybb->settings['bburl']."/".get_forum_link($fid)); } else	header("Location: ".$mybb->settings['bburl']."/".get_forum_link($fid)); } else
{	{
$_SERVER['REQUEST_URI'] = htmlspecialchars_uni($_SERVER['REQUEST_URI']); eval("\$pwform = \"".$templates->get("forumdisplay_password")."\";"); output_page($pwform);	$_SERVER['REQUEST_URI'] = htmlspecialchars_uni($_SERVER['REQUEST_URI']); eval("\$pwform = \"".$templates->get("forumdisplay_password")."\";"); output_page($pwform);
Zeile 1347	Zeile 1414
exit; } }	exit; } }

/** * Return the permissions for a moderator in a specific forum *	/** * Return the permissions for a moderator in a specific forum *
Zeile 1358	Zeile 1425
*/ function get_moderator_permissions($fid, $uid="0", $parentslist="") {	*/ function get_moderator_permissions($fid, $uid="0", $parentslist="") {
global $mybb, $db;	global $mybb, $cache, $db;
static $modpermscache;	static $modpermscache;

if($uid < 1) { $uid = $mybb->user['uid']; }	if($uid < 1) { $uid = $mybb->user['uid']; }

if($uid == 0) { return false; }	if($uid == 0) { return false; }
if(!isset($modpermscache[$fid][$uid]))	if(isset($modpermscache[$fid][$uid])) { return $modpermscache[$fid][$uid]; } if(!$parentslist) { $parentslist = explode(',', get_parent_list($fid)); } // Get user groups $perms = array(); $user = get_user($uid); $groups = array($user['usergroup']); if(!empty($user['additionalgroups'])) { $extra_groups = explode(",", $user['additionalgroups']); foreach($extra_groups as $extra_group) { $groups[] = $extra_group; } } $mod_cache = $cache->read("moderators"); foreach($mod_cache as $forumid => $forum)
{	{
if(!$parentslist)	if(!is_array($forum) \|\| !in_array($forumid, $parentslist))
{	{
$parentslist = get_parent_list($fid);	// No perms or we're not after this forum continue; } // User settings override usergroup settings if(is_array($forum['users'][$uid])) { $perm = $forum['users'][$uid]; foreach($perm as $action => $value) { if(strpos($action, "can") === false) { continue; } // Figure out the user permissions if($value == 0) { // The user doesn't have permission to set this action $perms[$action] = 0; } else { $perms[$action] = max($perm[$action], $perms[$action]); } }
}	}
// Get user groups $query = $db->simple_select("users", "usergroup,additionalgroups", "uid='{$uid}'"); $usergroups = $db->fetch_array($query); $groups = "'{$usergroups['usergroup']}'"; if(!empty($usergroups['additionalgroups'])) { $groups .= ",'{$usergroups['additionalgroups']}'"; } $query = $db->simple_select("moderators", "*", "((id IN ({$groups}) AND isgroup='1') OR (id='{$uid}' AND isgroup='0')) AND fid='$fid'"); while($results = $db->fetch_array($query))	foreach($groups as $group)
{	{
$perms['caneditposts'] = max($perms['caneditposts'], $results['caneditposts']); $perms['candeleteposts'] = max($perms['candeleteposts'], $results['candeleteposts']); $perms['canviewips'] = max($perms['canviewips'], $results['canviewips']); $perms['canopenclosethreads'] = max($perms['canopenclosethreads'], $results['canopenclosethreads']); $perms['canmanagethreads'] = max($perms['canmanagethreads'], $results['canmanagethreads']); $perms['canmovetononmodforum'] = max($perms['canmovetononmodforum'], $results['canmovetononmodforum']);	if(!is_array($forum['usergroups'][$group])) { // There are no permissions set for this group continue; } $perm = $forum['usergroups'][$group]; foreach($perm as $action => $value) { if(strpos($action, "can") === false) { continue; } $perms[$action] = max($perm[$action], $perms[$action]); }
}	}
$sql = build_parent_list($fid, "fid", "OR", $parentslist); $query = $db->simple_select("moderators", "*", "((id IN ({$groups}) AND isgroup='1') OR (id='{$uid}' AND isgroup='0')) AND {$sql}"); $uperms = $db->fetch_array($query); if(!$uperms && !$perms) { return false; } //Join the group permissions with the user permissions $perms['caneditposts'] = max($perms['caneditposts'], $uperms['caneditposts']); $perms['candeleteposts'] = max($perms['candeleteposts'], $uperms['candeleteposts']); $perms['canviewips'] = max($perms['canviewips'], $uperms['canviewips']); $perms['canopenclosethreads'] = max($perms['canopenclosethreads'], $uperms['canopenclosethreads']); $perms['canmanagethreads'] = max($perms['canmanagethreads'], $uperms['canmanagethreads']); $perms['canmovetononmodforum'] = max($perms['canmovetononmodforum'], $uperms['canmovetononmodforum']); $modpermscache[$fid][$uid] = $perms; } else { $perms = $modpermscache[$fid][$uid];
}	}
	$modpermscache[$fid][$uid] = $perms;
return $perms; }	return $perms; }
Zeile 1441	Zeile 1540
{ $uid = $mybb->user['uid']; }	{ $uid = $mybb->user['uid']; }

if($uid == 0)	if($uid == 0)
{	{
return false; } $user_perms = user_permissions($uid); if($user_perms['issupermod'] == 1) {	return false; } $user_perms = user_permissions($uid); if($user_perms['issupermod'] == 1) {
	if($fid) { $forumpermissions = forum_permissions($fid); if($forumpermissions['canview'] && $forumpermissions['canviewthreads'] && !$forumpermissions['canonlyviewownthreads']) { return true; } return false; }
return true;	return true;
}	}
else { if(!$fid)	else { if(!$fid)
Zeile 1460	Zeile 1568
if(!empty($modcache)) { foreach($modcache as $modusers)	if(!empty($modcache)) { foreach($modcache as $modusers)
{	{
if(isset($modusers['users'][$uid]) && $modusers['users'][$uid]['mid']) {	if(isset($modusers['users'][$uid]) && $modusers['users'][$uid]['mid']) {
	return true; } elseif(isset($modusers['usergroups'][$user_perms['gid']])) { // Moderating usergroup
return true; } }	return true; } }
Zeile 1472	Zeile 1585
else { $modperms = get_moderator_permissions($fid, $uid);	else { $modperms = get_moderator_permissions($fid, $uid);

if(!$action && $modperms)	if(!$action && $modperms)
{	{
return true; } else { if($modperms[$action] == 1)	return true; } else { if($modperms[$action] == 1)
{	{
return true;	return true;
}	}
else { return false; } } }	else { return false; } } }
}	}
} /**	} /**
Zeile 1507	Zeile 1620
$icon = $mybb->input['icon']; }	$icon = $mybb->input['icon']; }
	$iconlist = '';
$no_icons_checked = " checked=\"checked\""; // read post icons from cache, and sort them accordingly $posticons_cache = $cache->read("posticons");	$no_icons_checked = " checked=\"checked\""; // read post icons from cache, and sort them accordingly $posticons_cache = $cache->read("posticons");
Zeile 1516	Zeile 1630
$posticons[$posticon['name']] = $posticon; } krsort($posticons);	$posticons[$posticon['name']] = $posticon; } krsort($posticons);

foreach($posticons as $dbicon) {	foreach($posticons as $dbicon) {
	$dbicon['path'] = htmlspecialchars_uni($dbicon['path']); $dbicon['name'] = htmlspecialchars_uni($dbicon['name']);
if($icon == $dbicon['iid']) { $iconlist .= "<label><input type=\"radio\" name=\"icon\" value=\"".$dbicon['iid']."\" checked=\"checked\" /> <img src=\"".$dbicon['path']."\" alt=\"".$dbicon['name']."\" /></label>";	if($icon == $dbicon['iid']) { $iconlist .= "<label><input type=\"radio\" name=\"icon\" value=\"".$dbicon['iid']."\" checked=\"checked\" /> <img src=\"".$dbicon['path']."\" alt=\"".$dbicon['name']."\" /></label>";
Zeile 1598	Zeile 1715
{ $cookie .= "; HttpOnly"; }	{ $cookie .= "; HttpOnly"; }

$mybb->cookies[$name] = $value;	$mybb->cookies[$name] = $value;

header($cookie, false); } /** * Unset a cookie set by MyBB.	header($cookie, false); } /** * Unset a cookie set by MyBB.
* * @param string The cookie identifier.	* * @param string The cookie identifier.
*/ function my_unsetcookie($name) { global $mybb;	*/ function my_unsetcookie($name) { global $mybb;

$expires = -3600; my_setcookie($name, "", $expires);	$expires = -3600; my_setcookie($name, "", $expires);
unset($mybb->cookies[$name]); }	unset($mybb->cookies[$name]); }
/** * Get the contents from a serialised cookie array.	/** * Get the contents from a serialised cookie array.
Zeile 1627	Zeile 1744
* @return array\|boolean The cookie id's content array or false when non-existent. */ function my_get_array_cookie($name, $id)	* @return array\|boolean The cookie id's content array or false when non-existent. */ function my_get_array_cookie($name, $id)
{	{
global $mybb;	global $mybb;

if(!isset($mybb->cookies['mybb'][$name]))	if(!isset($mybb->cookies['mybb'][$name]))
{	{
return false;	return false;
} $cookie = unserialize($mybb->cookies['mybb'][$name]); if(isset($cookie[$id])) {	} $cookie = my_unserialize($mybb->cookies['mybb'][$name]); if(is_array($cookie) && isset($cookie[$id])) {
return $cookie[$id]; } else { return 0;	return $cookie[$id]; } else { return 0;
} } /**	} } /**
* Set a serialised cookie array. * * @param string The cookie identifier. * @param int The cookie content id. * @param string The value to set the cookie to. */	* Set a serialised cookie array. * * @param string The cookie identifier. * @param int The cookie content id. * @param string The value to set the cookie to. */
function my_set_array_cookie($name, $id, $value)	function my_set_array_cookie($name, $id, $value, $expires="")
{ global $mybb;	{ global $mybb;

$cookie = $mybb->cookies['mybb'];	$cookie = $mybb->cookies['mybb'];
$newcookie = unserialize($cookie[$name]);	$newcookie = my_unserialize($cookie[$name]);
$newcookie[$id] = $value; $newcookie = serialize($newcookie);	$newcookie[$id] = $value; $newcookie = serialize($newcookie);
my_setcookie("mybb[$name]", addslashes($newcookie));	my_setcookie("mybb[$name]", addslashes($newcookie), $expires);
// Make sure our current viarables are up-to-date as well $mybb->cookies['mybb'][$name] = $newcookie;	// Make sure our current viarables are up-to-date as well $mybb->cookies['mybb'][$name] = $newcookie;
	} /** * Verifies that data passed is an array * * @param array Data to unserialize * @return array Unserialized data array */ function my_unserialize($data) { $array = unserialize($data); if(!is_array($array)) { $array = array(); } return $array;
} /**	} /**
Zeile 1676	Zeile 1812
function get_server_load() { global $lang;	function get_server_load() { global $lang;
$serverload = array();	$serverload = array();
// DIRECTORY_SEPARATOR checks if running windows if(DIRECTORY_SEPARATOR != '\\') {	// DIRECTORY_SEPARATOR checks if running windows if(DIRECTORY_SEPARATOR != '\\') {
Zeile 1686	Zeile 1822
{ // sys_getloadavg() will return an array with [0] being load within the last minute. $serverload = sys_getloadavg();	{ // sys_getloadavg() will return an array with [0] being load within the last minute. $serverload = sys_getloadavg();
$serverload[0] = round($serverload[0], 4); }	$serverload[0] = round($serverload[0], 4); }
else if(@file_exists("/proc/loadavg") && $load = @file_get_contents("/proc/loadavg"))	else if(@file_exists("/proc/loadavg") && $load = @file_get_contents("/proc/loadavg"))
{	{
$serverload = explode(" ", $load); $serverload[0] = round($serverload[0], 4); } if(!is_numeric($serverload[0])) { if(@ini_get('safe_mode') == 'On')	$serverload = explode(" ", $load); $serverload[0] = round($serverload[0], 4); } if(!is_numeric($serverload[0])) { if(@ini_get('safe_mode') == 'On')
{	{
return $lang->unknown; }	return $lang->unknown; }

// Suhosin likes to throw a warning if exec is disabled then die - weird if($func_blacklist = @ini_get('suhosin.executor.func.blacklist'))	// Suhosin likes to throw a warning if exec is disabled then die - weird if($func_blacklist = @ini_get('suhosin.executor.func.blacklist'))
{ if(strpos(",".$func_blacklist.",", 'exec') !== false) { return $lang->unknown; }	{ if(strpos(",".$func_blacklist.",", 'exec') !== false) { return $lang->unknown; }
} // PHP disabled functions? if($func_blacklist = @ini_get('disable_functions'))	} // PHP disabled functions? if($func_blacklist = @ini_get('disable_functions'))
Zeile 1729	Zeile 1865
else { return $lang->unknown;	else { return $lang->unknown;
} $returnload = trim($serverload[0]);	} $returnload = trim($serverload[0]);
return $returnload;	return $returnload;
	} /** * Returns the amount of memory allocated to the script. * * @return int The amount of memory allocated to the script. */ function get_memory_usage() { if(function_exists('memory_get_peak_usage')) { return memory_get_peak_usage(true); } elseif(function_exists('memory_get_usage')) { return memory_get_usage(true); } return false;
} /**	} /**
Zeile 1749	Zeile 1903
$counters = array('numthreads','numunapprovedthreads','numposts','numunapprovedposts','numusers'); $update = array();	$counters = array('numthreads','numunapprovedthreads','numposts','numunapprovedposts','numusers'); $update = array();
foreach($counters as $counter)	foreach($counters as $counter)
{ if(array_key_exists($counter, $changes)) {	{ if(array_key_exists($counter, $changes)) {
Zeile 1757	Zeile 1911
if(substr($changes[$counter], 0, 1) == "+" \|\| substr($changes[$counter], 0, 1) == "-") { if(intval($changes[$counter]) != 0)	if(substr($changes[$counter], 0, 1) == "+" \|\| substr($changes[$counter], 0, 1) == "-") { if(intval($changes[$counter]) != 0)
{	{
$new_stats[$counter] = $stats[$counter] + $changes[$counter]; } }	$new_stats[$counter] = $stats[$counter] + $changes[$counter]; } }
Zeile 1771	Zeile 1925
$new_stats[$counter] = 0; } }	$new_stats[$counter] = 0; } }
}	}
// Fetch latest user if the user count is changing if(array_key_exists('numusers', $changes))	// Fetch latest user if the user count is changing if(array_key_exists('numusers', $changes))
{ $query = $db->simple_select("users", "uid, username", "", array('order_by' => 'uid', 'order_dir' => 'DESC', 'limit' => 1));	{ $query = $db->simple_select("users", "uid, username", "", array('order_by' => 'regdate', 'order_dir' => 'DESC', 'limit' => 1));
$lastmember = $db->fetch_array($query); $new_stats['lastuid'] = $lastmember['uid']; $new_stats['lastusername'] = $lastmember['username'];	$lastmember = $db->fetch_array($query); $new_stats['lastuid'] = $lastmember['uid']; $new_stats['lastusername'] = $lastmember['username'];
}	}
if(empty($new_stats)) { return; }	if(empty($new_stats)) { return; }

if(is_array($stats)) { $stats = array_merge($stats, $new_stats);	if(is_array($stats)) { $stats = array_merge($stats, $new_stats);
Zeile 1839	Zeile 1993
{ $update_query[$counter] = $changes[$counter]; }	{ $update_query[$counter] = $changes[$counter]; }

// Less than 0? That's bad if($update_query[$counter] < 0) { $update_query[$counter] = 0; }	// Less than 0? That's bad if($update_query[$counter] < 0) { $update_query[$counter] = 0; }
} }	} }
// Only update if we're actually doing something if(count($update_query) > 0) { $db->update_query("forums", $update_query, "fid='".intval($fid)."'");	// Only update if we're actually doing something if(count($update_query) > 0) { $db->update_query("forums", $update_query, "fid='".intval($fid)."'");
}	}
// Guess we should update the statistics too?	// Guess we should update the statistics too?
if(isset($update_query['threads']) \|\| isset($update_query['posts']) \|\| isset($update_query['unapprovedthreads']) \|\| isset($update_query['unapprovedposts'])) { $new_stats = array(); if(array_key_exists('threads', $update_query)) { $threads_diff = $update_query['threads'] - $forum['threads']; if($threads_diff > -1) { $new_stats['numthreads'] = "+{$threads_diff}"; } else { $new_stats['numthreads'] = "{$threads_diff}"; } } if(array_key_exists('unapprovedthreads', $update_query)) { $unapprovedthreads_diff = $update_query['unapprovedthreads'] - $forum['unapprovedthreads']; if($unapprovedthreads_diff > -1) { $new_stats['numunapprovedthreads'] = "+{$unapprovedthreads_diff}"; } else { $new_stats['numunapprovedthreads'] = "{$unapprovedthreads_diff}"; }	$new_stats = array(); if(array_key_exists('threads', $update_query)) { $threads_diff = $update_query['threads'] - $forum['threads']; if($threads_diff > -1) { $new_stats['numthreads'] = "+{$threads_diff}"; } else { $new_stats['numthreads'] = "{$threads_diff}"; } } if(array_key_exists('unapprovedthreads', $update_query)) { $unapprovedthreads_diff = $update_query['unapprovedthreads'] - $forum['unapprovedthreads']; if($unapprovedthreads_diff > -1) { $new_stats['numunapprovedthreads'] = "+{$unapprovedthreads_diff}"; } else { $new_stats['numunapprovedthreads'] = "{$unapprovedthreads_diff}"; } } if(array_key_exists('posts', $update_query)) { $posts_diff = $update_query['posts'] - $forum['posts']; if($posts_diff > -1) { $new_stats['numposts'] = "+{$posts_diff}"; } else { $new_stats['numposts'] = "{$posts_diff}"; } } if(array_key_exists('unapprovedposts', $update_query)) { $unapprovedposts_diff = $update_query['unapprovedposts'] - $forum['unapprovedposts']; if($unapprovedposts_diff > -1) { $new_stats['numunapprovedposts'] = "+{$unapprovedposts_diff}";
}	}
if(array_key_exists('posts', $update_query))	else
{	{
$posts_diff = $update_query['posts'] - $forum['posts']; if($posts_diff > -1) { $new_stats['numposts'] = "+{$posts_diff}"; } else { $new_stats['numposts'] = "{$posts_diff}"; } } if(array_key_exists('unapprovedposts', $update_query)) { $unapprovedposts_diff = $update_query['unapprovedposts'] - $forum['unapprovedposts']; if($unapprovedposts_diff > -1) { $new_stats['numunapprovedposts'] = "+{$unapprovedposts_diff}"; } else { $new_stats['numunapprovedposts'] = "{$unapprovedposts_diff}"; }	$new_stats['numunapprovedposts'] = "{$unapprovedposts_diff}";
}	}
	} if(!empty($new_stats)) {
update_stats($new_stats); }	update_stats($new_stats); }

// Update last post info update_forum_lastpost($fid);	// Update last post info update_forum_lastpost($fid);

$cache->update_forums(); }	$cache->update_forums(); }
Zeile 1959	Zeile 2114
global $db; $update_query = array();	global $db; $update_query = array();

$counters = array('replies','unapprovedposts','attachmentcount', 'attachmentcount');	$counters = array('replies','unapprovedposts','attachmentcount', 'attachmentcount');

// Fetch above counters for this thread $query = $db->simple_select("threads", implode(",", $counters), "tid='{$tid}'"); $thread = $db->fetch_array($query);	// Fetch above counters for this thread $query = $db->simple_select("threads", implode(",", $counters), "tid='{$tid}'"); $thread = $db->fetch_array($query);

foreach($counters as $counter) { if(array_key_exists($counter, $changes))	foreach($counters as $counter) { if(array_key_exists($counter, $changes))
Zeile 1979	Zeile 2134
{ $update_query[$counter] = $changes[$counter]; }	{ $update_query[$counter] = $changes[$counter]; }

// Less than 0? That's bad if($update_query[$counter] < 0) {	// Less than 0? That's bad if($update_query[$counter] < 0) {
Zeile 1987	Zeile 2142
} } }	} } }

$db->free_result($query); // Only update if we're actually doing something if(count($update_query) > 0) { $db->update_query("threads", $update_query, "tid='".intval($tid)."'");	$db->free_result($query); // Only update if we're actually doing something if(count($update_query) > 0) { $db->update_query("threads", $update_query, "tid='".intval($tid)."'");
}	}
unset($update_query, $thread); update_thread_data($tid);	unset($update_query, $thread); update_thread_data($tid);
Zeile 2009	Zeile 2164
function update_thread_data($tid) { global $db;	function update_thread_data($tid) { global $db;
	$thread = get_thread($tid); // If this is a moved thread marker, don't update it - we need it to stay as it is if(strpos($thread['closed'], 'moved\|') !== false) { return false; }
$query = $db->query(" SELECT u.uid, u.username, p.username AS postusername, p.dateline FROM ".TABLE_PREFIX."posts p	$query = $db->query(" SELECT u.uid, u.username, p.username AS postusername, p.dateline FROM ".TABLE_PREFIX."posts p
Zeile 2018	Zeile 2182
LIMIT 1" ); $lastpost = $db->fetch_array($query);	LIMIT 1" ); $lastpost = $db->fetch_array($query);

$db->free_result($query);	$db->free_result($query);

$query = $db->query(" SELECT u.uid, u.username, p.username AS postusername, p.dateline FROM ".TABLE_PREFIX."posts p	$query = $db->query(" SELECT u.uid, u.username, p.username AS postusername, p.dateline FROM ".TABLE_PREFIX."posts p
Zeile 2030	Zeile 2194
LIMIT 1 "); $firstpost = $db->fetch_array($query);	LIMIT 1 "); $firstpost = $db->fetch_array($query);

$db->free_result($query); if(!$firstpost['username'])	$db->free_result($query); if(!$firstpost['username'])
Zeile 2041	Zeile 2205
if(!$lastpost['username']) { $lastpost['username'] = $lastpost['postusername'];	if(!$lastpost['username']) { $lastpost['username'] = $lastpost['postusername'];
}	}
if(!$lastpost['dateline']) { $lastpost['username'] = $firstpost['username'];	if(!$lastpost['dateline']) { $lastpost['username'] = $firstpost['username'];
Zeile 2062	Zeile 2226
'lastposteruid' => intval($lastpost['uid']), ); $db->update_query("threads", $update_array, "tid='{$tid}'");	'lastposteruid' => intval($lastpost['uid']), ); $db->update_query("threads", $update_array, "tid='{$tid}'");

unset($firstpost, $lastpost, $update_array); } function update_forum_count($fid) { die("Deprecated function call: update_forum_count");	unset($firstpost, $lastpost, $update_array); } function update_forum_count($fid) { die("Deprecated function call: update_forum_count");
}	}
function update_thread_count($tid) { die("Deprecated function call: update_thread_count");	function update_thread_count($tid) { die("Deprecated function call: update_thread_count");
Zeile 2133	Zeile 2297
global $forum_cache, $jumpfcache, $permissioncache, $mybb, $selecteddone, $forumjump, $forumjumpbits, $gobutton, $theme, $templates, $lang; $pid = intval($pid);	global $forum_cache, $jumpfcache, $permissioncache, $mybb, $selecteddone, $forumjump, $forumjumpbits, $gobutton, $theme, $templates, $lang; $pid = intval($pid);
	$jumpsel['default'] = '';
if($permissions) {	if($permissions) {
Zeile 2160	Zeile 2325
$permissioncache = forum_permissions(); }	$permissioncache = forum_permissions(); }
if(is_array($jumpfcache[$pid]))	if(isset($jumpfcache[$pid]) && is_array($jumpfcache[$pid]))
{ foreach($jumpfcache[$pid] as $main) {	{ foreach($jumpfcache[$pid] as $main) {
Zeile 2177	Zeile 2342
$optionselected = "selected=\"selected\""; $selecteddone = 1; }	$optionselected = "selected=\"selected\""; $selecteddone = 1; }

$forum['name'] = htmlspecialchars_uni(strip_tags($forum['name'])); eval("\$forumjumpbits .= \"".$templates->get("forumjump_bit")."\";");	$forum['name'] = htmlspecialchars_uni(strip_tags($forum['name'])); eval("\$forumjumpbits .= \"".$templates->get("forumjump_bit")."\";");
Zeile 2202	Zeile 2367
} $jumpsel[$selitem] = 'selected="selected"';	} $jumpsel[$selitem] = 'selected="selected"';
}	}
if($showextras == 0) {	if($showextras == 0) {
Zeile 2211	Zeile 2376
else { $template = "advanced";	else { $template = "advanced";
	if(strpos(FORUM_URL, '.html') !== false) { $forum_link = "'".str_replace('{fid}', "'+this.options[this.selectedIndex].value+'", FORUM_URL)."'"; } else { $forum_link = "'".str_replace('{fid}', "'+this.options[this.selectedIndex].value", FORUM_URL); }
} eval("\$forumjump = \"".$templates->get("forumjump_".$template)."\";");	} eval("\$forumjump = \"".$templates->get("forumjump_".$template)."\";");
Zeile 2322	Zeile 2496
"editor_enter_image", "editor_enter_video_url", "editor_video_dailymotion",	"editor_enter_image", "editor_enter_video_url", "editor_video_dailymotion",
"editor_video_googlevideo",
"editor_video_metacafe", "editor_video_myspacetv", "editor_video_vimeo",	"editor_video_metacafe", "editor_video_myspacetv", "editor_video_vimeo",
Zeile 2340	Zeile 2513
"editor_color" ); $editor_language = "var editor_language = {\n";	"editor_color" ); $editor_language = "var editor_language = {\n";
$plugins->run_hooks_by_ref("mycode_add_codebuttons", $editor_lang_strings);	$editor_lang_strings = $plugins->run_hooks("mycode_add_codebuttons", $editor_lang_strings);
foreach($editor_lang_strings as $key => $lang_string) {	foreach($editor_lang_strings as $key => $lang_string) {
Zeile 2350	Zeile 2523
$string = str_replace("\"", "\\\"", $lang->$lang_string); $editor_language .= "\t{$js_lang_string}: \"{$string}\"";	$string = str_replace("\"", "\\\"", $lang->$lang_string); $editor_language .= "\t{$js_lang_string}: \"{$string}\"";
if($editor_lang_strings[$key+1])	if(isset($editor_lang_strings[$key+1]))
{ $editor_language .= ","; }	{ $editor_language .= ","; }
Zeile 2412	Zeile 2585
{ reset($smiliecache);	{ reset($smiliecache);
	$getmore = '';
if($mybb->settings['smilieinsertertot'] >= $smiliecount) { $mybb->settings['smilieinsertertot'] = $smiliecount;	if($mybb->settings['smilieinsertertot'] >= $smiliecount) { $mybb->settings['smilieinsertertot'] = $smiliecount;
Zeile 2467	Zeile 2641
} return $clickablesmilies;	} return $clickablesmilies;
	} /** * Builds thread prefixes and returns a selected prefix (or all) * * @param int The prefix ID (0 to return all) * @return array The thread prefix's values (or all thread prefixes) */ function build_prefixes($pid=0) { global $cache; static $prefixes_cache; if(is_array($prefixes_cache)) { if($pid > 0 && is_array($prefixes_cache[$pid])) { return $prefixes_cache[$pid]; } return $prefixes_cache; } $prefix_cache = $cache->read("threadprefixes"); if(!is_array($prefix_cache)) { // No cache $prefix_cache = $cache->read("threadprefixes", true); if(!is_array($prefix_cache)) { return array(); } } $prefixes_cache = array(); foreach($prefix_cache as $prefix) { $prefixes_cache[$prefix['pid']] = $prefix; } if($pid != 0 && is_array($prefixes_cache[$pid])) { return $prefixes_cache[$pid]; } else if(!empty($prefixes_cache)) { return $prefixes_cache; } return false;
} /** * Build the thread prefix selection menu	} /** * Build the thread prefix selection menu
*	*
* @param mixed The forum ID (integer ID or string all) * @param mixed The selected prefix ID (integer ID or string any) * @return string The thread prefix selection menu */ function build_prefix_select($fid, $selected_pid=0, $multiple=0) {	* @param mixed The forum ID (integer ID or string all) * @param mixed The selected prefix ID (integer ID or string any) * @return string The thread prefix selection menu */ function build_prefix_select($fid, $selected_pid=0, $multiple=0) {
global $db, $lang, $mybb;	global $cache, $db, $lang, $mybb;
if($fid != 'all') { $fid = intval($fid);	if($fid != 'all') { $fid = intval($fid);
}	} $prefix_cache = build_prefixes(0); if(!$prefix_cache) { return false; // We've got no prefixes to show }

// Does this user have additional groups?	$groups = array($mybb->user['usergroup']);
if($mybb->user['additionalgroups']) { $exp = explode(",", $mybb->user['additionalgroups']);	if($mybb->user['additionalgroups']) { $exp = explode(",", $mybb->user['additionalgroups']);
// Because we like apostrophes... $imps = array();
foreach($exp as $group)	foreach($exp as $group)
{ $imps[] = "'{$group}'"; } $additional_groups = implode(",", $imps); $extra_sql = "groups IN ({$additional_groups}) OR "; } else { $extra_sql = '';	{ $groups[] = $group; }
}	}
switch($db->type)	// Go through each of our prefixes and decide which ones we can use $prefixes = array(); foreach($prefix_cache as $prefix)
{	{
case "pgsql": case "sqlite": $whereforum = ""; if($fid != 'all') { $whereforum = " AND (','\|\|forums\|\|',' LIKE '%,{$fid},%' OR ','\|\|forums\|\|',' LIKE '%,-1,%' OR forums='')"; } $query = $db->query(" SELECT pid, prefix FROM ".TABLE_PREFIX."threadprefixes WHERE ({$extra_sql}','\|\|groups\|\|',' LIKE '%,{$mybb->user['usergroup']},%' OR ','\|\|groups\|\|',' LIKE '%,-1,%' OR groups='') {$whereforum} "); break; default: $whereforum = ""; if($fid != 'all') { $whereforum = " AND (CONCAT(',',forums,',') LIKE '%,{$fid},%' OR CONCAT(',',forums,',') LIKE '%,-1,%' OR forums='')"; } $query = $db->query(" SELECT pid, prefix FROM ".TABLE_PREFIX."threadprefixes WHERE ({$extra_sql}CONCAT(',',groups,',') LIKE '%,{$mybb->user['usergroup']},%' OR CONCAT(',',groups,',') LIKE '%,-1,%' OR groups='') {$whereforum} "); } $prefixselect = ""; if($db->num_rows($query) > 0) { $multipleselect = ""; if($multiple != 0)	if($fid != "all" && $prefix['forums'] != "-1")
{	{
$multipleselect = " multiple=\"multiple\" size=\"5\"";	// Decide whether this prefix can be used in our forum $forums = explode(",", $prefix['forums']); if(!in_array($fid, $forums)) { // This prefix is not in our forum list continue; }
}	}
$prefixselect = "<select name=\"threadprefix\"{$multipleselect}>\n"; if($multiple == 1)	if($prefix['groups'] != "-1")
{	{
$any_selected = ""; if($selected_pid == 'any')	$prefix_groups = explode(",", $prefix['groups']); foreach($groups as $group)
{	{
$any_selected = " selected=\"selected\"";	if(in_array($group, $prefix_groups) && !isset($prefixes[$prefix['pid']])) { // Our group can use this prefix! $prefixes[$prefix['pid']] = $prefix; }
}	}
$prefixselect .= "<option value=\"any\"".$any_selected.">".$lang->any_prefix."</option>\n"; } $default_selected = ""; if((intval($selected_pid) == 0) && $selected_pid != 'any')	} else
{	{
$default_selected = " selected=\"selected\"";	// This prefix is for anybody to use... $prefixes[$prefix['pid']] = $prefix;
}	}
$prefixselect .= "<option value=\"0\"".$default_selected.">".$lang->no_prefix."</option>\n"; while($prefix = $db->fetch_array($query))	} if(empty($prefixes)) { return false; } $prefixselect = ""; if($multiple != 0) { $prefixselect = "<select name=\"threadprefix[]\" multiple=\"multiple\" size=\"5\">\n"; } else { $prefixselect = "<select name=\"threadprefix\">\n"; } if($multiple == 1) { $any_selected = ""; if($selected_pid == 'any') { $any_selected = " selected=\"selected\""; } $prefixselect .= "<option value=\"any\"".$any_selected.">".$lang->any_prefix."</option>\n"; } $default_selected = ""; if((intval($selected_pid) == 0) && $selected_pid != 'any') { $default_selected = " selected=\"selected\""; } $prefixselect .= "<option value=\"0\"".$default_selected.">".$lang->no_prefix."</option>\n"; foreach($prefixes as $prefix) { $selected = ""; if($prefix['pid'] == $selected_pid)
{	{
$selected = ""; if($prefix['pid'] == $selected_pid) { $selected = " selected=\"selected\""; } $prefixselect .= "<option value=\"".$prefix['pid']."\"".$selected.">".htmlspecialchars_uni($prefix['prefix'])."</option>\n";	$selected = " selected=\"selected\"";
}	}
$prefixselect .= "</select>\n ";	$prefixselect .= "<option value=\"".$prefix['pid']."\"".$selected.">".htmlspecialchars_uni($prefix['prefix'])."</option>\n";
}	}
	$prefixselect .= "</select>\n ";
return $prefixselect; }	return $prefixselect; }
Zeile 2698	Zeile 2927
function get_reputation($reputation, $uid=0) { global $theme;	function get_reputation($reputation, $uid=0) { global $theme;
	$display_reputation = '';
if($uid != 0) {	if($uid != 0) {
Zeile 2744	Zeile 2975
else if($level >= 50) { return "<span class=\"moderate_warning\">{$level}%</span>";	else if($level >= 50) { return "<span class=\"moderate_warning\">{$level}%</span>";
}	}
else if($level >= 25)	else if($level >= 25)
{	{
return "<span class=\"low_warning\">{$level}%</span>"; } else { return $level."%";	return "<span class=\"low_warning\">{$level}%</span>"; } else { return $level."%";
}	}
} /** * Fetch the IP address of the current user. * * @return string The IP address.	} /** * Fetch the IP address of the current user. * * @return string The IP address.
*/	*/
function get_ip() {	function get_ip() {
if(isset($_SERVER['REMOTE_ADDR']))	global $mybb, $plugins; $ip = 0; if(!preg_match("#^(10\|172\.(1[6-9]\|2[0-9]\|3[0-1])\|192\.168)\.#", $_SERVER['REMOTE_ADDR']))
{ $ip = $_SERVER['REMOTE_ADDR'];	{ $ip = $_SERVER['REMOTE_ADDR'];
} elseif(isset($_SERVER['HTTP_X_FORWARDED_FOR'])) { if(preg_match_all("#[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}#s", $_SERVER['HTTP_X_FORWARDED_FOR'], $addresses)) {	} if($mybb->settings['ip_forwarded_check']) { if(isset($_SERVER['HTTP_X_FORWARDED_FOR'])) { preg_match_all("#[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}#s", $_SERVER['HTTP_X_FORWARDED_FOR'], $addresses); } elseif(isset($_SERVER['HTTP_X_REAL_IP'])) { preg_match_all("#[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}#s", $_SERVER['HTTP_X_REAL_IP'], $addresses); } if(is_array($addresses[0])) {
foreach($addresses[0] as $key => $val) {	foreach($addresses[0] as $key => $val) {
if(!preg_match("#^(10\|172\.16\|192\.168)\.#", $val))	if(!preg_match("#^(10\|172\.(1[6-9]\|2[0-9]\|3[0-1])\|192\.168)\.#", $val))
{ $ip = $val; break;	{ $ip = $val; break;
Zeile 2781	Zeile 3026
} }	} }
if(!isset($ip))	if(!$ip)
{ if(isset($_SERVER['HTTP_CLIENT_IP'])) { $ip = $_SERVER['HTTP_CLIENT_IP']; }	{ if(isset($_SERVER['HTTP_CLIENT_IP'])) { $ip = $_SERVER['HTTP_CLIENT_IP']; }
else { $ip = ''; }
}	}
$ip = preg_replace("#([^.0-9 ]*)#", "", $ip);	if($plugins) { $ip_array = array("ip" => &$ip); // Used for backwards compatibility on this hook with the updated run_hooks() function. $plugins->run_hooks("get_ip", $ip_array); }
return $ip; }	return $ip; }
Zeile 2806	Zeile 3052
function get_friendly_size($size) { global $lang;	function get_friendly_size($size) { global $lang;

if(!is_numeric($size)) { return $lang->na; }	if(!is_numeric($size)) { return $lang->na; }

// Yottabyte (1024 Zettabytes) if($size >= 1208925819614629174706176) {	// Yottabyte (1024 Zettabytes) if($size >= 1208925819614629174706176) {
Zeile 2913	Zeile 3159
global $change_dir; $theme['imgdir'] = "{$change_dir}/images"; }	global $change_dir; $theme['imgdir'] = "{$change_dir}/images"; }

return "<img src=\"{$theme['imgdir']}/attachtypes/unknown.gif\" border=\"0\" alt=\".{$ext}\" />"; } }	return "<img src=\"{$theme['imgdir']}/attachtypes/unknown.gif\" border=\"0\" alt=\".{$ext}\" />"; } }
Zeile 2926	Zeile 3172
*/ function get_unviewable_forums($only_readable_threads=false) {	*/ function get_unviewable_forums($only_readable_threads=false) {
global $forum_cache, $permissioncache, $mybb, $unviewableforums, $unviewable, $templates, $forumpass; $pid = intval($pid); if(!$permissions) { $permissions = $mybb->usergroup; }	global $forum_cache, $permissioncache, $mybb, $unviewable, $templates, $forumpass;
if(!is_array($forum_cache)) { cache_forums();	if(!is_array($forum_cache)) { cache_forums();
}	}
if(!is_array($permissioncache))	if(!is_array($permissioncache))
{	{
$permissioncache = forum_permissions(); }	$permissioncache = forum_permissions(); }
	$password_forums = array();
foreach($forum_cache as $fid => $forum) { if($permissioncache[$forum['fid']])	foreach($forum_cache as $fid => $forum) { if($permissioncache[$forum['fid']])
{	{
$perms = $permissioncache[$forum['fid']]; } else	$perms = $permissioncache[$forum['fid']]; } else
Zeile 2963	Zeile 3203
if($mybb->cookies['forumpass'][$forum['fid']] != md5($mybb->user['uid'].$forum['password'])) { $pwverified = 0;	if($mybb->cookies['forumpass'][$forum['fid']] != md5($mybb->user['uid'].$forum['password'])) { $pwverified = 0;
	} $password_forums[$forum['fid']] = $forum['password']; } else { // Check parents for passwords $parents = explode(",", $forum['parentlist']); foreach($parents as $parent) { if(isset($password_forums[$parent]) && $mybb->cookies['forumpass'][$parent] != md5($mybb->user['uid'].$password_forums[$parent])) { $pwverified = 0; }
} }	} }
Zeile 2977	Zeile 3231
} }	} }
return $unviewableforums; }	if(isset($unviewableforums)) { return $unviewableforums; } }
/** * Fixes mktime for dates earlier than 1970 *	/** * Fixes mktime for dates earlier than 1970 *
Zeile 3007	Zeile 3264
global $nav, $navbits, $templates, $theme, $lang, $mybb; eval("\$navsep = \"".$templates->get("nav_sep")."\";");	global $nav, $navbits, $templates, $theme, $lang, $mybb; eval("\$navsep = \"".$templates->get("nav_sep")."\";");

$i = 0;	$i = 0;
	$activesep = '';
if(is_array($navbits))	if(is_array($navbits))
{	{
reset($navbits); foreach($navbits as $key => $navbit) {	reset($navbits); foreach($navbits as $key => $navbit) {
Zeile 3022	Zeile 3280
$sep = $navsep; } else	$sep = $navsep; } else
{	{
$sep = ""; }	$sep = ""; }

$multipage = null; $multipage_dropdown = null; if(!empty($navbit['multipage'])) {	$multipage = null; $multipage_dropdown = null; if(!empty($navbit['multipage'])) {
	if(!$mybb->settings['threadsperpage'] \|\| (int)$mybb->settings['threadsperpage'] < 1) { $mybb->settings['threadsperpage'] = 20; }
$multipage = multipage($navbit['multipage']['num_threads'], $mybb->settings['threadsperpage'], $navbit['multipage']['current_page'], $navbit['multipage']['url'], true); if($multipage) {	$multipage = multipage($navbit['multipage']['num_threads'], $mybb->settings['threadsperpage'], $navbit['multipage']['current_page'], $navbit['multipage']['url'], true); if($multipage) {
Zeile 3038	Zeile 3301
$sep = $multipage_dropdown.$sep; } }	$sep = $multipage_dropdown.$sep; } }
	// Replace page 1 URLs $navbit['url'] = str_replace("-page-1.html", ".html", $navbit['url']); $navbit['url'] = preg_replace("/&page=1$/", "", $navbit['url']);
eval("\$nav .= \"".$templates->get("nav_bit")."\";"); }	eval("\$nav .= \"".$templates->get("nav_bit")."\";"); }
} } $navsize = count($navbits); $navbit = $navbits[$navsize-1];	} } $navsize = count($navbits); $navbit = $navbits[$navsize-1];
if($nav) {	if($nav) {
Zeile 3097	Zeile 3364
} if(is_array($pforumcache[$fid]))	} if(is_array($pforumcache[$fid]))
{	{
foreach($pforumcache[$fid] as $key => $forumnav) { if($fid == $forumnav['fid']) {	foreach($pforumcache[$fid] as $key => $forumnav) { if($fid == $forumnav['fid']) {
if($pforumcache[$forumnav['pid']])	if(!empty($pforumcache[$forumnav['pid']]))
{ build_forum_breadcrumb($forumnav['pid']); }	{ build_forum_breadcrumb($forumnav['pid']); }
Zeile 3111	Zeile 3378
// Convert & to & $navbits[$navsize]['name'] = preg_replace("#&(?!\#[0-9]+;)#si", "&", $forumnav['name']);	// Convert & to & $navbits[$navsize]['name'] = preg_replace("#&(?!\#[0-9]+;)#si", "&", $forumnav['name']);
if(IN_ARCHIVE == 1)	if(defined("IN_ARCHIVE"))
{ // Set up link to forum in breadcrumb. if($pforumcache[$fid][$forumnav['pid']]['type'] == 'f' \|\| $pforumcache[$fid][$forumnav['pid']]['type'] == 'c') { $navbits[$navsize]['url'] = "{$base_url}forum-".$forumnav['fid'].".html";	{ // Set up link to forum in breadcrumb. if($pforumcache[$fid][$forumnav['pid']]['type'] == 'f' \|\| $pforumcache[$fid][$forumnav['pid']]['type'] == 'c') { $navbits[$navsize]['url'] = "{$base_url}forum-".$forumnav['fid'].".html";
}	}
else { $navbits[$navsize]['url'] = $archiveurl."/index.php";	else { $navbits[$navsize]['url'] = $archiveurl."/index.php";
Zeile 3126	Zeile 3393
elseif(!empty($multipage)) { $navbits[$navsize]['url'] = get_forum_link($forumnav['fid'], $multipage['current_page']);	elseif(!empty($multipage)) { $navbits[$navsize]['url'] = get_forum_link($forumnav['fid'], $multipage['current_page']);

$navbits[$navsize]['multipage'] = $multipage;	$navbits[$navsize]['multipage'] = $multipage;
$navbits[$navsize]['multipage']['url'] = get_forum_link($forumnav['fid']);	$navbits[$navsize]['multipage']['url'] = str_replace('{fid}', $forumnav['fid'], FORUM_URL_PAGED);
} else {	} else {
Zeile 3136	Zeile 3403
} } }	} } }
}	}
return 1; }	return 1; }
Zeile 3155	Zeile 3422
unset($GLOBALS['navbits']); $GLOBALS['navbits'] = $newnav; }	unset($GLOBALS['navbits']); $GLOBALS['navbits'] = $newnav; }

/** * Builds a URL to an archive mode page *	/** * Builds a URL to an archive mode page *
Zeile 3166	Zeile 3433
function build_archive_link($type, $id="") { global $mybb;	function build_archive_link($type, $id="") { global $mybb;

// If the server OS is not Windows and not Apache or the PHP is running as a CGI or we have defined ARCHIVE_QUERY_STRINGS, use query strings - DIRECTORY_SEPARATOR checks if running windows	// If the server OS is not Windows and not Apache or the PHP is running as a CGI or we have defined ARCHIVE_QUERY_STRINGS, use query strings - DIRECTORY_SEPARATOR checks if running windows
if((DIRECTORY_SEPARATOR == '\\' && is_numeric(stripos($_SERVER['SERVER_SOFTWARE'], "apache")) == false) \|\| is_numeric(stripos(SAPI_NAME, "cgi")) !== false \|\| defined("ARCHIVE_QUERY_STRINGS")) { $base_url = $mybb->settings['bburl']."/archive/index.php?";	//if((DIRECTORY_SEPARATOR == '\\' && is_numeric(stripos($_SERVER['SERVER_SOFTWARE'], "apache")) == false) \|\| is_numeric(stripos(SAPI_NAME, "cgi")) !== false \|\| defined("ARCHIVE_QUERY_STRINGS")) if($mybb->settings['seourls_archive'] == 1) { $base_url = $mybb->settings['bburl']."/archive/index.php/";
} else {	} else {
$base_url = $mybb->settings['bburl']."/archive/index.php/";	$base_url = $mybb->settings['bburl']."/archive/index.php?";
} switch($type)	} switch($type)
Zeile 3200	Zeile 3468
*/ function debug_page() {	*/ function debug_page() {
global $db, $debug, $templates, $templatelist, $mybb, $maintimer, $globaltime, $ptimer, $parsetime;	global $db, $debug, $templates, $templatelist, $mybb, $maintimer, $globaltime, $ptimer, $parsetime, $lang;
$totaltime = $maintimer->totaltime; $phptime = $maintimer->format($maintimer->totaltime - $db->query_time);	$totaltime = $maintimer->totaltime; $phptime = $maintimer->format($maintimer->totaltime - $db->query_time);
Zeile 3265	Zeile 3533
echo "<td bgcolor=\"#FEFEFE\" width=\"25%\"><font face=\"Tahoma\" size=\"2\">".count($templates->cache)." (".intval(count(explode(",", $templatelist)))." Cached / ".intval(count($templates->uncached_templates))." Manually Loaded)</font></td>\n"; echo "</tr>\n";	echo "<td bgcolor=\"#FEFEFE\" width=\"25%\"><font face=\"Tahoma\" size=\"2\">".count($templates->cache)." (".intval(count(explode(",", $templatelist)))." Cached / ".intval(count($templates->uncached_templates))." Manually Loaded)</font></td>\n"; echo "</tr>\n";
if(function_exists("memory_get_usage"))	$memory_usage = get_memory_usage(); if(!$memory_usage)
{	{
$memory_usage = memory_get_peak_usage(true); $memory_limit = @ini_get("memory_limit"); echo "<tr>\n"; echo "<td bgcolor=\"#EFEFEF\" width=\"25%\"><b><font face=\"Tahoma\" size=\"2\">Memory Usage:</font></b></td>\n"; echo "<td bgcolor=\"#FEFEFE\" width=\"25%\"><font face=\"Tahoma\" size=\"2\">".get_friendly_size($memory_usage)." ({$memory_usage} bytes)</font></td>\n"; echo "<td bgcolor=\"#EFEFEF\" width=\"25%\"><b><font face=\"Tahoma\" size=\"2\">Memory Limit:</font></b></td>\n"; echo "<td bgcolor=\"#FEFEFE\" width=\"25%\"><font face=\"Tahoma\" size=\"2\">{$memory_limit}</font></td>\n"; echo "</tr>\n";	$memory_usage = $lang->unknown;
}	}
	else { $memory_usage = get_friendly_size($memory_usage)." ({$memory_usage} bytes)"; } $memory_limit = @ini_get("memory_limit"); echo "<tr>\n"; echo "<td bgcolor=\"#EFEFEF\" width=\"25%\"><b><font face=\"Tahoma\" size=\"2\">Memory Usage:</font></b></td>\n"; echo "<td bgcolor=\"#FEFEFE\" width=\"25%\"><font face=\"Tahoma\" size=\"2\">{$memory_usage}</font></td>\n"; echo "<td bgcolor=\"#EFEFEF\" width=\"25%\"><b><font face=\"Tahoma\" size=\"2\">Memory Limit:</font></b></td>\n"; echo "<td bgcolor=\"#FEFEFE\" width=\"25%\"><font face=\"Tahoma\" size=\"2\">{$memory_limit}</font></td>\n"; echo "</tr>\n";
echo "</table>\n";	echo "</table>\n";
Zeile 3304	Zeile 3577
echo "<br />\n"; }	echo "<br />\n"; }
if(count($templates->uncached_templates > 0))	if(count($templates->uncached_templates) > 0)
{ echo "<table style=\"background-color: #666;\" width=\"95%\" cellpadding=\"4\" cellspacing=\"1\" align=\"center\">\n"; echo "<tr>\n";	{ echo "<table style=\"background-color: #666;\" width=\"95%\" cellpadding=\"4\" cellspacing=\"1\" align=\"center\">\n"; echo "<tr>\n";
Zeile 3328	Zeile 3601
{ global $mybb;	{ global $mybb;
if($mybb->settings['nocacheheaders'] == 1 && $mybb->settings['standardheaders'] != 1)	if($mybb->settings['nocacheheaders'] == 1)
{ header("Expires: Sat, 1 Jan 2000 01:00:00 GMT"); header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT");	{ header("Expires: Sat, 1 Jan 2000 01:00:00 GMT"); header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT");
Zeile 3402	Zeile 3675
$hsecs = 60*60; $msecs = 60;	$hsecs = 60*60; $msecs = 60;
if($options['short'] == true)	if(isset($options['short']))
{ $lang_year = $lang->year_short; $lang_years = $lang->years_short;	{ $lang_year = $lang->year_short; $lang_years = $lang->years_short;
Zeile 3487	Zeile 3760
$nicetime['days'] = $days.$lang_days; }	$nicetime['days'] = $days.$lang_days; }
if($options['hours'] !== false)	if(!isset($options['hours']) \|\| $options['hours'] !== false)
{ if($hours == 1) {	{ if($hours == 1) {
Zeile 3499	Zeile 3772
} }	} }
if($options['minutes'] !== false)	if(!isset($options['minutes']) \|\| $options['minutes'] !== false)
{ if($minutes == 1) {	{ if($minutes == 1) {
Zeile 3511	Zeile 3784
} }	} }
if($options['seconds'] !== false)	if(!isset($options['seconds']) \|\| $options['seconds'] !== false)
{ if($seconds == 1) {	{ if($seconds == 1) {
Zeile 3642	Zeile 3915
} } }	} } }

$dispupdate = ""; if($leavegroup == $user['displaygroup']) {	$dispupdate = ""; if($leavegroup == $user['displaygroup']) {
Zeile 3654	Zeile 3927
SET additionalgroups='$groupslist' $dispupdate WHERE uid='".intval($uid)."' ");	SET additionalgroups='$groupslist' $dispupdate WHERE uid='".intval($uid)."' ");

$cache->update_moderators(); }	$cache->update_moderators(); }
Zeile 3687	Zeile 3960
else { $location = htmlspecialchars_uni($_SERVER['PHP_SELF']);	else { $location = htmlspecialchars_uni($_SERVER['PHP_SELF']);
}	}
if($fields == true) { global $mybb;	if($fields == true) { global $mybb;

if(!is_array($ignore)) { $ignore = array($ignore); }	if(!is_array($ignore)) { $ignore = array($ignore); }

$form_html = "";	$form_html = "";
$field_parts = explode('&', $field_parts);
if(!empty($mybb->input)) { foreach($mybb->input as $name => $value)	if(!empty($mybb->input)) { foreach($mybb->input as $name => $value)
Zeile 3709	Zeile 3980
{ continue; }	{ continue; }
$form_html .= "<input type=\"hidden\" name=\"".htmlspecialchars((string)$name)."\" value=\"".htmlspecialchars((string)$value)."\" />\n";	$form_html .= "<input type=\"hidden\" name=\"".htmlspecialchars_uni((string)$name)."\" value=\"".htmlspecialchars_uni((string)$value)."\" />\n";
} }	} }

return array('location' => $location, 'form_html' => $form_html, 'form_method' => $mybb->request_method); } else	return array('location' => $location, 'form_html' => $form_html, 'form_method' => $mybb->request_method); } else
Zeile 3726	Zeile 3997
{ $location .= "?".htmlspecialchars_uni($_ENV['QUERY_STRING']); }	{ $location .= "?".htmlspecialchars_uni($_ENV['QUERY_STRING']); }

if((isset($_SERVER['REQUEST_METHOD']) && $_SERVER['REQUEST_METHOD'] == "POST") \|\| (isset($_ENV['REQUEST_METHOD']) && $_ENV['REQUEST_METHOD'] == "POST")) { $post_array = array('action', 'fid', 'pid', 'tid', 'uid', 'eid');	if((isset($_SERVER['REQUEST_METHOD']) && $_SERVER['REQUEST_METHOD'] == "POST") \|\| (isset($_ENV['REQUEST_METHOD']) && $_ENV['REQUEST_METHOD'] == "POST")) { $post_array = array('action', 'fid', 'pid', 'tid', 'uid', 'eid');

foreach($post_array as $var) { if(isset($_POST[$var]))	foreach($post_array as $var) { if(isset($_POST[$var]))
Zeile 3738	Zeile 4009
$addloc[] = urlencode($var).'='.urlencode($_POST[$var]); } }	$addloc[] = urlencode($var).'='.urlencode($_POST[$var]); } }

if(isset($addloc) && is_array($addloc)) { if(strpos($location, "?") === false)	if(isset($addloc) && is_array($addloc)) { if(strpos($location, "?") === false)
Zeile 3750	Zeile 4021
$location .= "&"; } $location .= implode("&", $addloc);	$location .= "&"; } $location .= implode("&", $addloc);
}	} } if(strlen($location) > 150) { $location = substr($location, 0, 150);
}	}

return $location; } }	return $location; } }
Zeile 3784	Zeile 4060
$query = $db->simple_select("themes", "name, pid, tid, allowedgroups", "pid != '0'", array('order_by' => 'pid, name')); while($theme = $db->fetch_array($query))	$query = $db->simple_select("themes", "name, pid, tid, allowedgroups", "pid != '0'", array('order_by' => 'pid, name')); while($theme = $db->fetch_array($query))
{	{
$tcache[$theme['pid']][$theme['tid']] = $theme; } }	$tcache[$theme['pid']][$theme['tid']] = $theme; } }
Zeile 3795	Zeile 4071
if($mybb->user['additionalgroups']) { $in_groups = explode(",", $mybb->user['additionalgroups']);	if($mybb->user['additionalgroups']) { $in_groups = explode(",", $mybb->user['additionalgroups']);
}	}
$in_groups[] = $mybb->user['usergroup']; foreach($tcache[$tid] as $theme)	$in_groups[] = $mybb->user['usergroup']; foreach($tcache[$tid] as $theme)
Zeile 3827	Zeile 4103
if($theme['pid'] != 0) {	if($theme['pid'] != 0) {
$themeselect .= "<option value=\"".$theme['tid']."\"$sel>".$depth.$theme['name']."</option>";	$themeselect .= "<option value=\"".$theme['tid']."\"$sel>".$depth.htmlspecialchars_uni($theme['name'])."</option>";
$depthit = $depth."--";	$depthit = $depth."--";
}	}
if(array_key_exists($theme['tid'], $tcache)) {	if(array_key_exists($theme['tid'], $tcache)) {
Zeile 3840	Zeile 4116
} if($tid == 1)	} if($tid == 1)
{	{
$themeselect .= "</select>"; }	$themeselect .= "</select>"; }
Zeile 3869	Zeile 4145
* @return int The formatted number. */ function my_number_format($number)	* @return int The formatted number. */ function my_number_format($number)
{	{
global $mybb;	global $mybb;

if($number == "-") { return $number; } if(is_int($number))	if($number == "-") { return $number; } if(is_int($number))
{	{
return number_format($number, 0, $mybb->settings['decpoint'], $mybb->settings['thousandssep']); } else	return number_format($number, 0, $mybb->settings['decpoint'], $mybb->settings['thousandssep']); } else
Zeile 3897	Zeile 4173
return number_format((double)$number, $decimals, $mybb->settings['decpoint'], $mybb->settings['thousandssep']); } }	return number_format((double)$number, $decimals, $mybb->settings['decpoint'], $mybb->settings['thousandssep']); } }

function convert_through_utf8($str, $to=true) { global $lang; static $charset; static $use_mb; static $use_iconv;	function convert_through_utf8($str, $to=true) { global $lang; static $charset; static $use_mb; static $use_iconv;

if(!isset($charset)) { $charset = my_strtolower($lang->settings['charset']); }	if(!isset($charset)) { $charset = my_strtolower($lang->settings['charset']); }

if($charset == "utf-8")	if($charset == "utf-8")
{	{
return $str;	return $str;
}	}
if(!isset($use_iconv)) { $use_iconv = function_exists("iconv"); }	if(!isset($use_iconv)) { $use_iconv = function_exists("iconv"); }

if(!isset($use_mb)) { $use_mb = function_exists("mb_convert_encoding"); }	if(!isset($use_mb)) { $use_mb = function_exists("mb_convert_encoding"); }

if($use_iconv \|\| $use_mb) { if($to) { $from_charset = $lang->settings['charset']; $to_charset = "UTF-8";	if($use_iconv \|\| $use_mb) { if($to) { $from_charset = $lang->settings['charset']; $to_charset = "UTF-8";
}	}
else { $from_charset = "UTF-8"; $to_charset = $lang->settings['charset']; } if($use_iconv)	else { $from_charset = "UTF-8"; $to_charset = $lang->settings['charset']; } if($use_iconv)
{	{
return iconv($from_charset, $to_charset."//IGNORE", $str);	return iconv($from_charset, $to_charset."//IGNORE", $str);
}	}
else { return @mb_convert_encoding($str, $to_charset, $from_charset);	else { return @mb_convert_encoding($str, $to_charset, $from_charset);
} }	} }
elseif($charset == "iso-8859-1" && function_exists("utf8_encode")) { if($to) { return utf8_encode($str);	elseif($charset == "iso-8859-1" && function_exists("utf8_encode")) { if($to) { return utf8_encode($str);
}	}
else { return utf8_decode($str); } } else	else { return utf8_decode($str); } } else
{	{
return $str; } }	return $str; } }
Zeile 3972	Zeile 4248
function my_wordwrap($message) { global $mybb;	function my_wordwrap($message) { global $mybb;

if($mybb->settings['wordwrap'] > 0) { $message = convert_through_utf8($message);	if($mybb->settings['wordwrap'] > 0) { $message = convert_through_utf8($message);
if(!($new_message = @preg_replace("#(?>[^\s&/<>\"\\-\.\[\]]{{$mybb->settings['wordwrap']}})#u", "$0", $message)))	if(!($new_message = @preg_replace("#(((?>[^\s&/<>\"\\-\[\]])\|(&\#[a-z0-9]{1,10};)){{$mybb->settings['wordwrap']}})#u", "$0", $message)))
{	{
$new_message = preg_replace("#(?>[^\s&/<>\"\\-\.\[\]]{{$mybb->settings['wordwrap']}})#", "$0", $message);	$new_message = preg_replace("#(((?>[^\s&/<>\"\\-\[\]])\|(&\#[a-z0-9]{1,10};)){{$mybb->settings['wordwrap']}})#", "$0", $message);
}	}

$new_message = convert_through_utf8($new_message, false);	$new_message = convert_through_utf8($new_message, false);

return $new_message; }	return $new_message; }
Zeile 4090	Zeile 4366
$lang->month_11, $lang->month_12 );	$lang->month_11, $lang->month_12 );

// This needs to be in this specific order $find = array(	// This needs to be in this specific order $find = array(
Zeile 4101	Zeile 4377
'Y', 'j', 'S',	'Y', 'j', 'S',
	'F',
'l',	'l',
'F',
'M',	'M',
);	); $html = array( 'm', 'c', 'D', 'y', 'Y', 'j', 'S', 'F', 'l', 'M', ); $bdays = str_replace($find, $html, $bdays); $bmonth = str_replace($find, $html, $bmonth);
$replace = array( sprintf('%02s', $bm),	$replace = array( sprintf('%02s', $bm),
Zeile 4114	Zeile 4406
$by, ($bd[0] == 0 ? my_substr($bd, 1) : $bd), ($bd == 1 \|\| $bd == 21 \|\| $bd == 31 ? 'st' : ($bd == 2 \|\| $bd == 22 ? 'nd' : ($bd == 3 \|\| $bd == 23 ? 'rd' : 'th'))),	$by, ($bd[0] == 0 ? my_substr($bd, 1) : $bd), ($bd == 1 \|\| $bd == 21 \|\| $bd == 31 ? 'st' : ($bd == 2 \|\| $bd == 22 ? 'nd' : ($bd == 3 \|\| $bd == 23 ? 'rd' : 'th'))),
$wd,
$bmonth[$bm-1],	$bmonth[$bm-1],
	$wd,
($bm == 9 ? my_substr($bmonth[$bm-1], 0, 4) : my_substr($bmonth[$bm-1], 0, 3)), );	($bm == 9 ? my_substr($bmonth[$bm-1], 0, 4) : my_substr($bmonth[$bm-1], 0, 3)), );

// Do we have the full month in our output? // If so there's no need for the short month if(strpos($display, 'F') !== false)	// Do we have the full month in our output? // If so there's no need for the short month if(strpos($display, 'F') !== false)
Zeile 4126	Zeile 4418
array_pop($find); array_pop($replace); }	array_pop($find); array_pop($replace); }

return str_replace($find, $replace, $display); }	return str_replace($find, $replace, $display); }
Zeile 4189	Zeile 4481
*/ function my_strlen($string) {	*/ function my_strlen($string) {
global $lang; $string = preg_replace("#&\#([0-9]+);#", "-", $string); if(strtolower($lang->settings['charset']) == "utf-8") { // Get rid of any excess RTL and LTR override for they are the workings of the devil $string = str_replace(dec_to_utf8(8238), "", $string); $string = str_replace(dec_to_utf8(8237), "", $string); // Remove dodgy whitespaces $string = str_replace(chr(0xCA), "", $string); } $string = trim($string); if(function_exists("mb_strlen")) { $string_length = mb_strlen($string); } else { $string_length = strlen($string); } return $string_length; }	global $lang; $string = preg_replace("#&\#([0-9]+);#", "-", $string); if(strtolower($lang->settings['charset']) == "utf-8") { // Get rid of any excess RTL and LTR override for they are the workings of the devil $string = str_replace(dec_to_utf8(8238), "", $string); $string = str_replace(dec_to_utf8(8237), "", $string); // Remove dodgy whitespaces $string = str_replace(chr(0xCA), "", $string); } $string = trim($string); if(function_exists("mb_strlen")) { $string_length = mb_strlen($string); } else { $string_length = strlen($string); } return $string_length; }
/** * Cuts a string at a specified point, mb strings accounted for	/** * Cuts a string at a specified point, mb strings accounted for
Zeile 4227	Zeile 4519
*/ function my_substr($string, $start, $length="", $handle_entities = false) {	*/ function my_substr($string, $start, $length="", $handle_entities = false) {
if($handle_entities) {	if($handle_entities) {
$string = unhtmlentities($string); } if(function_exists("mb_substr"))	$string = unhtmlentities($string); } if(function_exists("mb_substr"))
{ if($length != "") {	{ if($length != "") {
$cut_string = mb_substr($string, $start, $length); } else { $cut_string = mb_substr($string, $start);	$cut_string = mb_substr($string, $start, $length); } else { $cut_string = mb_substr($string, $start);
} }	} }
else { if($length != "")	else { if($length != "")
Zeile 4259	Zeile 4551
$cut_string = htmlspecialchars_uni($cut_string); } return $cut_string;	$cut_string = htmlspecialchars_uni($cut_string); } return $cut_string;
} /**	} /**
* lowers the case of a string, mb strings accounted for * * @param string The string to lower.	* lowers the case of a string, mb strings accounted for * * @param string The string to lower.
Zeile 4276	Zeile 4568
else { $string = strtolower($string);	else { $string = strtolower($string);
} return $string; } /**	} return $string; } /**
* Finds a needle in a haystack and returns it position, mb strings accounted for * * @param string String to look in (haystack)	* Finds a needle in a haystack and returns it position, mb strings accounted for * * @param string String to look in (haystack)
Zeile 4290	Zeile 4582
* @return int false on needle not found, integer position if found */ function my_strpos($haystack, $needle, $offset=0)	* @return int false on needle not found, integer position if found */ function my_strpos($haystack, $needle, $offset=0)
{	{
if($needle == '')	if($needle == '')
{	{
return false;	return false;
}	}
if(function_exists("mb_strpos")) { $position = mb_strpos($haystack, $needle, $offset);	if(function_exists("mb_strpos")) { $position = mb_strpos($haystack, $needle, $offset);
} else	} else
{ $position = strpos($haystack, $needle, $offset); }	{ $position = strpos($haystack, $needle, $offset); }

return $position; } /** * ups the case of a string, mb strings accounted for	return $position; } /** * ups the case of a string, mb strings accounted for
*	*
* @param string The string to up. * @return int The uped string. */	* @param string The string to up. * @return int The uped string. */
Zeile 4319	Zeile 4611
if(function_exists("mb_strtoupper")) { $string = mb_strtoupper($string);	if(function_exists("mb_strtoupper")) { $string = mb_strtoupper($string);
}	}
else { $string = strtoupper($string);	else { $string = strtoupper($string);
Zeile 4335	Zeile 4627
* @return int The un-htmlentitied' string. */ function unhtmlentities($string)	* @return int The un-htmlentitied' string. */ function unhtmlentities($string)
{	{
// Replace numeric entities	// Replace numeric entities
$string = preg_replace('~&#x([0-9a-f]+);~ei', 'unichr(hexdec("\\1"))', $string); $string = preg_replace('~&#([0-9]+);~e', 'unichr("\\1")', $string);	$string = preg_replace_callback('~&#x([0-9a-f]+);~i', create_function('$matches', 'return unichr(hexdec($matches[1]));'), $string); $string = preg_replace_callback('~&#([0-9]+);~', create_function('$matches', 'return unichr($matches[1]);'), $string);
// Replace literal entities $trans_tbl = get_html_translation_table(HTML_ENTITIES); $trans_tbl = array_flip($trans_tbl);	// Replace literal entities $trans_tbl = get_html_translation_table(HTML_ENTITIES); $trans_tbl = array_flip($trans_tbl);

return strtr($string, $trans_tbl); }	return strtr($string, $trans_tbl); }
Zeile 4355	Zeile 4647
*/ function unichr($c) {	*/ function unichr($c) {
if($c <= 0x7F)	if($c <= 0x7F)
{	{
return chr($c); }	return chr($c); }
else if($c <= 0x7FF) {	else if($c <= 0x7FF) {
return chr(0xC0 \| $c >> 6) . chr(0x80 \| $c & 0x3F); }	return chr(0xC0 \| $c >> 6) . chr(0x80 \| $c & 0x3F); }
else if($c <= 0xFFFF)	else if($c <= 0xFFFF)
{ return chr(0xE0 \| $c >> 12) . chr(0x80 \| $c >> 6 & 0x3F) . chr(0x80 \| $c & 0x3F); }	{ return chr(0xE0 \| $c >> 12) . chr(0x80 \| $c >> 6 & 0x3F) . chr(0x80 \| $c & 0x3F); }
else if($c <= 0x10FFFF) {	else if($c <= 0x10FFFF) {
return chr(0xF0 \| $c >> 18) . chr(0x80 \| $c >> 12 & 0x3F) . chr(0x80 \| $c >> 6 & 0x3F) . chr(0x80 \| $c & 0x3F); }	return chr(0xF0 \| $c >> 18) . chr(0x80 \| $c >> 12 & 0x3F) . chr(0x80 \| $c >> 6 & 0x3F) . chr(0x80 \| $c & 0x3F); }
else {	else {
return false; }	return false; }
} /**	} /**
Zeile 4385	Zeile 4677
* * @param array The event data array. * @return string The link to the event poster.	* * @param array The event data array. * @return string The link to the event poster.
*/	*/
function get_event_poster($event) { $event['username'] = format_name($event['username'], $event['usergroup'], $event['displaygroup']);	function get_event_poster($event) { $event['username'] = format_name($event['username'], $event['usergroup'], $event['displaygroup']);
Zeile 4401	Zeile 4693
*/ function get_event_date($event) {	*/ function get_event_date($event) {
	global $mybb;
$event_date = explode("-", $event['date']); $event_date = mktime(0, 0, 0, $event_date[1], $event_date[0], $event_date[2]); $event_date = my_date($mybb->settings['dateformat'], $event_date);	$event_date = explode("-", $event['date']); $event_date = mktime(0, 0, 0, $event_date[1], $event_date[0], $event_date[2]); $event_date = my_date($mybb->settings['dateformat'], $event_date);
Zeile 4467	Zeile 4761
{ $onclick = " onclick=\"{$onclick}\""; }	{ $onclick = " onclick=\"{$onclick}\""; }

return "<a href=\"{$mybb->settings['bburl']}/".get_profile_link($uid)."\"{$target}{$onclick}>{$username}</a>"; } }	return "<a href=\"{$mybb->settings['bburl']}/".get_profile_link($uid)."\"{$target}{$onclick}>{$username}</a>"; } }
Zeile 4485	Zeile 4779
{ $link = str_replace("{fid}", $fid, FORUM_URL_PAGED); $link = str_replace("{page}", $page, $link);	{ $link = str_replace("{fid}", $fid, FORUM_URL_PAGED); $link = str_replace("{page}", $page, $link);
return htmlspecialchars_uni($link);	return htmlspecialchars_uni($link);
} else {	} else {
Zeile 4515	Zeile 4809
{ $link = THREAD_URL_PAGED; }	{ $link = THREAD_URL_PAGED; }
$link = str_replace("{tid}", $tid, $link);	$link = str_replace("{tid}", $tid, $link);
$link = str_replace("{page}", $page, $link); return htmlspecialchars_uni($link); }	$link = str_replace("{page}", $page, $link); return htmlspecialchars_uni($link); }
Zeile 4647	Zeile 4941
{ return $user_cache[$uid]; }	{ return $user_cache[$uid]; }
else	elseif(($uid > 0))
{ $query = $db->simple_select("users", "*", "uid='{$uid}'"); $user_cache[$uid] = $db->fetch_array($query);	{ $query = $db->simple_select("users", "*", "uid='{$uid}'"); $user_cache[$uid] = $db->fetch_array($query);

return $user_cache[$uid]; }	return $user_cache[$uid]; }
	return array();
}	}

/** * Get the forum of a specific forum id.	/** * Get the forum of a specific forum id.
Zeile 4668	Zeile 4962
{ global $cache; static $forum_cache;	{ global $cache; static $forum_cache;

if(!isset($forum_cache) \|\| is_array($forum_cache))	if(!isset($forum_cache) \|\| is_array($forum_cache))
{	{
$forum_cache = $cache->read("forums");	$forum_cache = $cache->read("forums");
}	}
if(!$forum_cache[$fid]) { return false;	if(!$forum_cache[$fid]) { return false;
}	}
if($active_override != 1) {	if($active_override != 1) {
Zeile 4726	Zeile 5020
else { $thread_cache[$tid] = false;	else { $thread_cache[$tid] = false;
return false; } } }	return false; } } }
/** * Get the post of a post id.	/** * Get the post of a post id.
Zeile 4817	Zeile 5111
// Note: Number of logins is defaulted to 1, because using 0 seems to clear cookie data. Not really a problem as long as we account for 1 being default. // Use cookie if possible, otherwise use session	// Note: Number of logins is defaulted to 1, because using 0 seems to clear cookie data. Not really a problem as long as we account for 1 being default. // Use cookie if possible, otherwise use session
// Session stops user clearing cookies to bypass the login // Also use the greater of the two numbers present, stops people using scripts with altered cookie data to stay the same $cookielogins = intval($mybb->cookies['loginattempts']); $cookietime = $mybb->cookies['failedlogin'];	// Find better solution to prevent clearing cookies $loginattempts = 0; $failedlogin = 0;

if(empty($cookielogins) \|\| $cookielogins < $session->logins)	if(!empty($mybb->cookies['loginattempts']))
{	{
$loginattempts = $session->logins; } else { $loginattempts = $cookielogins;	$loginattempts = $mybb->cookies['loginattempts'];
}	}
if(empty($cookietime) \|\| $cookietime < $session->failedlogin) { $failedlogin = $session->failedlogin; } else	if(!empty($mybb->cookies['failedlogin']))
{	{
$failedlogin = $cookietime;	$failedlogin = $mybb->cookies['failedlogin'];
} // Work out if the user has had more than the allowed number of login attempts	} // Work out if the user has had more than the allowed number of login attempts
Zeile 4865	Zeile 5150
if(empty($failedlogin)) { my_setcookie('failedlogin', $now);	if(empty($failedlogin)) { my_setcookie('failedlogin', $now);
if($fatal) { error($lang->sprintf($lang->failed_login_wait, $hoursleft, $minsleft, $secsleft)); } return false;	if($fatal) { error($lang->sprintf($lang->failed_login_wait, $hoursleft, $minsleft, $secsleft)); } return false;
} // Work out if the user has waited long enough before letting them login again	} // Work out if the user has waited long enough before letting them login again
Zeile 4879	Zeile 5164
my_setcookie('loginattempts', 1); my_unsetcookie('failedlogin'); if($mybb->user['uid'] != 0)	my_setcookie('loginattempts', 1); my_unsetcookie('failedlogin'); if($mybb->user['uid'] != 0)
{	{
$update_array = array( 'loginattempts' => 1 );	$update_array = array( 'loginattempts' => 1 );
Zeile 4905	Zeile 5190
/** * Validates the format of an email address.	/** * Validates the format of an email address.
*	*
* @param string The string to check. * @return boolean True when valid, false when invalid. */	* @param string The string to check. * @return boolean True when valid, false when invalid. */
Zeile 4914	Zeile 5199
if(strpos($email, ' ') !== false) { return false;	if(strpos($email, ' ') !== false) { return false;
}	}
// Valid local characters for email addresses: http://www.remote.org/jochen/mail/info/chars.html return preg_match("/^[a-zA-Z0-9&+\-_.{}~^\?=\/]+@[a-zA-Z0-9-]+\.([a-zA-Z0-9-]+\.)[a-zA-Z0-9-]{2,}$/si", $email); }	// Valid local characters for email addresses: http://www.remote.org/jochen/mail/info/chars.html return preg_match("/^[a-zA-Z0-9&+\-_.{}~^\?=\/]+@[a-zA-Z0-9-]+\.([a-zA-Z0-9-]+\.)[a-zA-Z0-9-]{2,}$/si", $email); }
Zeile 4929	Zeile 5214
function email_already_in_use($email, $uid="") { global $db;	function email_already_in_use($email, $uid="") { global $db;

$uid_string = ""; if($uid) { $uid_string = " AND uid != '".intval($uid)."'"; }	$uid_string = ""; if($uid) { $uid_string = " AND uid != '".intval($uid)."'"; }
$query = $db->simple_select("users", "COUNT(email) as emails", "email = '".$db->escape_string(my_strtolower($email))."'{$uid_string}");	$query = $db->simple_select("users", "COUNT(email) as emails", "email = '".$db->escape_string($email)."'{$uid_string}");
if($db->fetch_field($query, "emails") > 0) { return true; }	if($db->fetch_field($query, "emails") > 0) { return true; }

return false; }	return false; }
Zeile 4982	Zeile 5267
$setting['value'] = addcslashes($setting['value'], '\\"$'); $settings .= "\$settings['{$setting['name']}'] = \"{$setting['value']}\";\n"; }	$setting['value'] = addcslashes($setting['value'], '\\"$'); $settings .= "\$settings['{$setting['name']}'] = \"{$setting['value']}\";\n"; }

$settings = "<"."?php\n/*******************************\ \n DO NOT EDIT THIS FILE, PLEASE USE\n THE SETTINGS EDITOR\n\*******************************/\n\n$settings\n?".">"; $file = @fopen(MYBB_ROOT."inc/settings.php", $mode); @fwrite($file, $settings);	$settings = "<"."?php\n/*******************************\ \n DO NOT EDIT THIS FILE, PLEASE USE\n THE SETTINGS EDITOR\n\*******************************/\n\n$settings\n?".">"; $file = @fopen(MYBB_ROOT."inc/settings.php", $mode); @fwrite($file, $settings);
Zeile 5004	Zeile 5289
if($mybb->settings['minsearchword'] < 1) { $mybb->settings['minsearchword'] = 3;	if($mybb->settings['minsearchword'] < 1) { $mybb->settings['minsearchword'] = 3;
}	} if(is_array($terms)) { $terms = implode(' ', $terms); }
// Strip out any characters that shouldn't be included $bad_characters = array(	// Strip out any characters that shouldn't be included $bad_characters = array(
Zeile 5022	Zeile 5312
$inquote = false; $terms = explode("\"", $terms); foreach($terms as $phrase)	$inquote = false; $terms = explode("\"", $terms); foreach($terms as $phrase)
{	{
$phrase = htmlspecialchars_uni($phrase); if($phrase != "") {	$phrase = htmlspecialchars_uni($phrase); if($phrase != "") {
Zeile 5031	Zeile 5321
$words[] = trim($phrase); } else	$words[] = trim($phrase); } else
{	{
$split_words = preg_split("#\s{1,}#", $phrase, -1); if(!is_array($split_words)) {	$split_words = preg_split("#\s{1,}#", $phrase, -1); if(!is_array($split_words)) {
Zeile 5048	Zeile 5338
} } $inquote = !$inquote;	} } $inquote = !$inquote;
} }	} }
// Otherwise just a simple search query with no phrases else { $terms = htmlspecialchars_uni($terms); $split_words = preg_split("#\s{1,}#", $terms, -1);	// Otherwise just a simple search query with no phrases else { $terms = htmlspecialchars_uni($terms); $split_words = preg_split("#\s{1,}#", $terms, -1);
if(!is_array($split_words)) { continue; } foreach($split_words as $word)	if(is_array($split_words))
{	{
if(!$word \|\| strlen($word) < $mybb->settings['minsearchword'])	foreach($split_words as $word)
{	{
continue;	if(!$word \|\| strlen($word) < $mybb->settings['minsearchword']) { continue; } $words[] = trim($word);
}	}
$words[] = trim($word);
}	}

} if(!is_array($words)) { return false; }	} if(!is_array($words)) { return false; }

// Sort the word array by length. Largest terms go first and work their way down to the smallest term. // This resolves problems like "test tes" where "tes" will be highlighted first, then "test" can't be highlighted because of the changed html usort($words, create_function('$a,$b', 'return strlen($b) - strlen($a);')); // Loop through our words to build the PREG compatible strings foreach($words as $word)	// Sort the word array by length. Largest terms go first and work their way down to the smallest term. // This resolves problems like "test tes" where "tes" will be highlighted first, then "test" can't be highlighted because of the changed html usort($words, create_function('$a,$b', 'return strlen($b) - strlen($a);')); // Loop through our words to build the PREG compatible strings foreach($words as $word)
{	{
$word = trim($word);	$word = trim($word);

$word = my_strtolower($word);	$word = my_strtolower($word);

// Special boolean operators should be stripped if($word == "" \|\| $word == "or" \|\| $word == "not" \|\| $word == "and") {	// Special boolean operators should be stripped if($word == "" \|\| $word == "or" \|\| $word == "not" \|\| $word == "and") {
Zeile 5093	Zeile 5381
} // Now make PREG compatible	} // Now make PREG compatible
$find = "#(?!<.?)(".preg_quote($word, "#").")(?![^<>]?>)#i";	$find = "#(?!<.?)(".preg_quote($word, "#").")(?![^<>]?>)#ui";
$replacement = "<span class=\"highlight\" style=\"padding-left: 0px; padding-right: 0px;\">$1</span>"; $highlight_cache[$find] = $replacement; }	$replacement = "<span class=\"highlight\" style=\"padding-left: 0px; padding-right: 0px;\">$1</span>"; $highlight_cache[$find] = $replacement; }
Zeile 5102	Zeile 5390
} /**	} /**
* Converts a decimal reference of a character to its UTF-8 equivilant	* Converts a decimal reference of a character to its UTF-8 equivalent
* (Code by Anne van Kesteren, http://annevankesteren.nl/2005/05/character-references) * * @param string Decimal value of a character reference	* (Code by Anne van Kesteren, http://annevankesteren.nl/2005/05/character-references) * * @param string Decimal value of a character reference
Zeile 5113	Zeile 5401
if($src < 0) {	if($src < 0) {
return false; }	return false; }
elseif($src <= 0x007f) { $dest .= chr($src);	elseif($src <= 0x007f) { $dest .= chr($src);
}	}
elseif($src <= 0x07ff) { $dest .= chr(0xc0 \| ($src >> 6));	elseif($src <= 0x07ff) { $dest .= chr(0xc0 \| ($src >> 6));
Zeile 5138	Zeile 5426
$dest .= chr(0x80 \| ($src & 0x3f)); } else	$dest .= chr(0x80 \| ($src & 0x3f)); } else
{	{
// Out of range return false; }	// Out of range return false; }
Zeile 5167	Zeile 5455
if($update_lastuse == true) { $db->update_query("banfilters", array("lastuse" => TIME_NOW), "fid='{$banned_username['fid']}'");	if($update_lastuse == true) { $db->update_query("banfilters", array("lastuse" => TIME_NOW), "fid='{$banned_username['fid']}'");
} return true; }	} return true; }
} // Still here - good username return false;	} // Still here - good username return false;
Zeile 5177	Zeile 5465
/** * Check if a specific email address has been banned.	/** * Check if a specific email address has been banned.
*	*
* @param string The email address. * @param boolean True if the 'last used' dateline should be updated if a match is found. * @return boolean True if banned, false if not banned */ function is_banned_email($email, $update_lastuse=false)	* @param string The email address. * @param boolean True if the 'last used' dateline should be updated if a match is found. * @return boolean True if banned, false if not banned */ function is_banned_email($email, $update_lastuse=false)
{ global $db; $query = $db->simple_select("banfilters", "", "type='3'"); while($banned_email = $db->fetch_array($query)) { // Make regular expression match $banned_email['filter'] = str_replace('\', '(.)', preg_quote($banned_email['filter'], '#')); if(preg_match("#{$banned_email['filter']}#i", $email)) { // Updating last use if($update_lastuse == true) { $db->update_query("banfilters", array("lastuse" => TIME_NOW), "fid='{$banned_email['fid']}'"); } return true;	{ global $cache, $db; $banned_cache = $cache->read("bannedemails"); if($banned_cache === false) { // Failed to read cache, see if we can rebuild it $cache->update_bannedemails(); $banned_cache = $cache->read("bannedemails"); } if(is_array($banned_cache) && !empty($banned_cache)) { foreach($banned_cache as $banned_email) { // Make regular expression * match $banned_email['filter'] = str_replace('\', '(.)', preg_quote($banned_email['filter'], '#')); if(preg_match("#{$banned_email['filter']}#i", $email)) { // Updating last use if($update_lastuse == true) { $db->update_query("banfilters", array("lastuse" => TIME_NOW), "fid='{$banned_email['fid']}'"); } return true; }
} }	} }

// Still here - good email return false; }	// Still here - good email return false; }
Zeile 5214	Zeile 5516
function is_banned_ip($ip_address, $update_lastuse=false) { global $db, $cache;	function is_banned_ip($ip_address, $update_lastuse=false) { global $db, $cache;

$banned_ips = $cache->read("bannedips"); if(!is_array($banned_ips)) { return false; }	$banned_ips = $cache->read("bannedips"); if(!is_array($banned_ips)) { return false; }

foreach($banned_ips as $banned_ip) { if(!$banned_ip['filter']) { continue; }	foreach($banned_ips as $banned_ip) { if(!$banned_ip['filter']) { continue; }

// Make regular expression * match $banned_ip['filter'] = str_replace('\', '(.)', preg_quote($banned_ip['filter'], '#'));	// Make regular expression * match $banned_ip['filter'] = str_replace('\', '(.)', preg_quote($banned_ip['filter'], '#'));
if(preg_match("#{$banned_ip['filter']}#i", $ip_address))	if(preg_match("#^{$banned_ip['filter']}$#i", $ip_address))
{ // Updating last use if($update_lastuse == true)	{ // Updating last use if($update_lastuse == true)
Zeile 5240	Zeile 5542
return true; } }	return true; } }

// Still here - good ip return false; }	// Still here - good ip return false; }
Zeile 5344	Zeile 5647
} $post_body = ltrim($post_body, '&'); }	} $post_body = ltrim($post_body, '&'); }

if(function_exists("curl_init")) { $ch = curl_init();	if(function_exists("curl_init")) { $ch = curl_init();
Zeile 5361	Zeile 5664
curl_close($ch); return $data; }	curl_close($ch); return $data; }
else if(function_exists("fsockopen"))	else if(function_exists("fsockopen"))
{ $url = @parse_url($url); if(!$url['host'])	{ $url = @parse_url($url); if(!$url['host'])
Zeile 5397	Zeile 5700
{ $headers[] = "GET {$url['path']} HTTP/1.0"; }	{ $headers[] = "GET {$url['path']} HTTP/1.0"; }

$headers[] = "Host: {$url['host']}"; $headers[] = "Connection: Close";	$headers[] = "Host: {$url['host']}"; $headers[] = "Connection: Close";
$headers[] = "\r\n";	$headers[] = '';
if(!empty($post_body))	if(!empty($post_body))
{	{
$headers[] = $post_body; }	$headers[] = $post_body; }
$headers = implode("\r\n", $headers);	else { // If we have no post body, we need to add an empty element to make sure we've got \r\n\r\n before the (non-existent) body starts $headers[] = ''; } $headers = implode("\r\n", $headers);
if(!@fwrite($fp, $headers)) { return false;	if(!@fwrite($fp, $headers)) { return false;
Zeile 5438	Zeile 5746
*/ function is_super_admin($uid) {	*/ function is_super_admin($uid) {
global $mybb; $mybb->config['super_admins'] = str_replace(" ", "", $mybb->config['super_admins']); if(my_strpos(",{$mybb->config['super_admins']},", ",{$uid},") === false) { return false;	static $super_admins; if(!isset($super_admins)) { global $mybb; $super_admins = str_replace(" ", "", $mybb->config['super_admins']);
}	}
else	if(my_strpos(",{$super_admins},", ",{$uid},") === false) { return false; } else
{ return true; }	{ return true; }
	} /** * Prevents super administrators being selected in a SELECT. * * @param boolean Prefix with an AND? * @param string The prefix to add to uid when used in a JOIN (e.g. SELECTing users u would mean using 'u' in this argument). * @return string An addition to the WHERE statement */ function not_super_admins($use_and = false, $uid_prefix = '') { static $super_admins; if(!isset($super_admins)) { global $mybb, $db; $super_admins = $db->escape_string(str_replace(" ", "", $mybb->config['super_admins'])); } if($super_admins) { $sql_where = ''; if($use_and) { $sql_where .= ' AND '; } if($uid_prefix != '') { $sql_where .= $uid_prefix.'.'; } $sql_where .= "uid NOT IN({$super_admins})"; return $sql_where; } return '';
} /**	} /**
Zeile 5486	Zeile 5836
$quoted_strings = array($string); } foreach($quoted_strings as $string)	$quoted_strings = array($string); } foreach($quoted_strings as $string)
{ if($string != "") {	{ if($string != "") {
if($in_escape) { $strings[] = trim($string);	if($in_escape) { $strings[] = trim($string);
Zeile 5516	Zeile 5866
* Fetch an IPv4 long formatted range for searching IPv4 IP addresses. * * @param string The IP address to convert to a range based LONG	* Fetch an IPv4 long formatted range for searching IPv4 IP addresses. * * @param string The IP address to convert to a range based LONG
* @rturn mixed If a full IP address is provided, the ip2long equivilent, otherwise an array of the upper & lower extremities of the IP	* @rturn mixed If a full IP address is provided, the ip2long equivalent, otherwise an array of the upper & lower extremities of the IP
*/ function fetch_longipv4_range($ip) { $ip_bits = explode(".", $ip); $ip_string1 = $ip_string2 = "";	*/ function fetch_longipv4_range($ip) { $ip_bits = explode(".", $ip); $ip_string1 = $ip_string2 = "";

if($ip == "*")	if($ip == "*")
{ return array(ip2long('0.0.0.0'), ip2long('255.255.255.255'));	{ return array(my_ip2long('128.0.0.0'), my_ip2long('127.255.255.255'));
} if(strpos($ip, ".") === false) { $ip = str_replace("", "", $ip); if(count($ip_bits) == 4)	} if(strpos($ip, ".") === false) { $ip = str_replace("", "", $ip); if(count($ip_bits) == 4)
{ return ip2long($ip);	{ return my_ip2long($ip);
} else {	} else {
return array(ip2long($ip.".0"), ip2long($ip.".255"));	return array(my_ip2long($ip.".0"), my_ip2long($ip.".255"));
} } // Wildcard based IP provided	} } // Wildcard based IP provided
Zeile 5550	Zeile 5900
{ $ip_string1 .= $sep."0"; $ip_string2 .= $sep."255";	{ $ip_string1 .= $sep."0"; $ip_string2 .= $sep."255";
}	}
else { $ip_string1 .= $sep.$piece;	else { $ip_string1 .= $sep.$piece;
Zeile 5558	Zeile 5908
} $sep = "."; }	} $sep = "."; }
return array(ip2long($ip_string1), ip2long($ip_string2));	return array(my_ip2long($ip_string1), my_ip2long($ip_string2));
}	}
}	}
/** * Fetch a list of ban times for a user account.	/** * Fetch a list of ban times for a user account.
Zeile 5592	Zeile 5942
"0-0-2" => "2 {$lang->years}" );	"0-0-2" => "2 {$lang->years}" );
$plugins->run_hooks_by_ref("functions_fetch_ban_times", $ban_times);	$ban_times = $plugins->run_hooks("functions_fetch_ban_times", $ban_times);
$ban_times['---'] = $lang->permanent; return $ban_times;	$ban_times['---'] = $lang->permanent; return $ban_times;
Zeile 5627	Zeile 5977
function expire_warnings() { global $db;	function expire_warnings() { global $db;

$users = array();	$users = array();

$query = $db->query(" SELECT w.wid, w.uid, w.points, u.warningpoints FROM ".TABLE_PREFIX."warnings w	$query = $db->query(" SELECT w.wid, w.uid, w.points, u.warningpoints FROM ".TABLE_PREFIX."warnings w
Zeile 5637	Zeile 5987
WHERE expires<".TIME_NOW." AND expires!=0 AND expired!=1 "); while($warning = $db->fetch_array($query))	WHERE expires<".TIME_NOW." AND expires!=0 AND expired!=1 "); while($warning = $db->fetch_array($query))
{	{
$updated_warning = array( "expired" => 1 ); $db->update_query("warnings", $updated_warning, "wid='{$warning['wid']}'");	$updated_warning = array( "expired" => 1 ); $db->update_query("warnings", $updated_warning, "wid='{$warning['wid']}'");

if(array_key_exists($warning['uid'], $users)) { $users[$warning['uid']] -= $warning['points'];	if(array_key_exists($warning['uid'], $users)) { $users[$warning['uid']] -= $warning['points'];
}	}
else { $users[$warning['uid']] = $warning['warningpoints']-$warning['points']; } }	else { $users[$warning['uid']] = $warning['warningpoints']-$warning['points']; } }

foreach($users as $uid => $warningpoints) { if($warningpoints < 0) { $warningpoints = 0; }	foreach($users as $uid => $warningpoints) { if($warningpoints < 0) { $warningpoints = 0; }

$updated_user = array( "warningpoints" => intval($warningpoints) ); $db->update_query("users", $updated_user, "uid='".intval($uid)."'");	$updated_user = array( "warningpoints" => intval($warningpoints) ); $db->update_query("users", $updated_user, "uid='".intval($uid)."'");
} } /** * Unicode function for php function chr() * * @param string The character * @return mixed The unicoded chr() */ function unicode_chr($c) { if($c <= 0x7F) { return chr($c); } elseif($c <= 0x7FF) { return chr(0xC0 \| $c >> 6) . chr(0x80 \| $c & 0x3F); } elseif($c <= 0xFFFF) { return chr(0xE0 \| $c >> 12) . chr(0x80 \| $c >> 6 & 0x3F) . chr(0x80 \| $c & 0x3F); } elseif($c <= 0x10FFFF) { return chr(0xF0 \| $c >> 18) . chr(0x80 \| $c >> 12 & 0x3F) . chr(0x80 \| $c >> 6 & 0x3F) . chr(0x80 \| $c & 0x3F); } else { return false; }	}
} /** * Custom chmod function to fix problems with hosts who's server configurations screw up umasks	} /** * Custom chmod function to fix problems with hosts who's server configurations screw up umasks
*	*
* @param string The file to chmod * @param string The mode to chmod(i.e. 0666) */	* @param string The file to chmod * @param string The mode to chmod(i.e. 0666) */
Zeile 5714	Zeile 6031
return false; } $old_umask = umask(0);	return false; } $old_umask = umask(0);

// We convert the octal string to a decimal number because passing a octal string doesn't work with chmod // and type casting subsequently removes the prepended 0 which is needed for octal numbers $result = chmod($file, octdec($mode)); umask($old_umask); return $result;	// We convert the octal string to a decimal number because passing a octal string doesn't work with chmod // and type casting subsequently removes the prepended 0 which is needed for octal numbers $result = chmod($file, octdec($mode)); umask($old_umask); return $result;
} /**	} /**
* Custom rmdir function to loop through an entire directory and delete all files/folders within * * @param string The path to the directory	* Custom rmdir function to loop through an entire directory and delete all files/folders within * * @param string The path to the directory
Zeile 5731	Zeile 6048
function my_rmdir_recursive($path, $ignore=array()) { global $orig_dir;	function my_rmdir_recursive($path, $ignore=array()) { global $orig_dir;

if(!isset($orig_dir)) { $orig_dir = $path; }	if(!isset($orig_dir)) { $orig_dir = $path; }
if(@is_dir($path) && !@is_link($path)) { if($dh = @opendir($path)) { while(($file = @readdir($dh)) !== false) { if($file == '.' \|\| $file == '..' \|\| $file == '.svn' \|\| in_array($path.'/'.$file, $ignore) \|\| !my_rmdir_recursive($path.'/'.$file)) { continue; } } @closedir($dh); }	if(@is_dir($path) && !@is_link($path)) { if($dh = @opendir($path)) { while(($file = @readdir($dh)) !== false) { if($file == '.' \|\| $file == '..' \|\| $file == '.svn' \|\| in_array($path.'/'.$file, $ignore) \|\| !my_rmdir_recursive($path.'/'.$file)) { continue; } } @closedir($dh); }
// Are we done? Don't delete the main folder too and return true if($path == $orig_dir) { return true;	// Are we done? Don't delete the main folder too and return true if($path == $orig_dir) { return true;
} return @rmdir($path); } return @unlink($path); }	} return @rmdir($path); } return @unlink($path); }
/** * Counts the number of subforums in a array([pid][disporder][fid]) starting from the pid *	/** * Counts the number of subforums in a array([pid][disporder][fid]) starting from the pid *
Zeile 5776	Zeile 6093
{ $count += count($array2); }	{ $count += count($array2); }

return $count; }	return $count; }
Zeile 5789	Zeile 6106
*/ function my_ip2long($ip) {	*/ function my_ip2long($ip) {
$ip = ip2long($ip); if($ip >= 2147483648) // Won't occur on 32-bit PHP	$ip_long = ip2long($ip); if(!$ip_long) { $ip_long = sprintf("%u", ip2long($ip)); if(!$ip_long) { return 0; } } if($ip_long >= 2147483648) // Won't occur on 32-bit PHP
{	{
$ip -= 4294967296;	$ip_long -= 4294967296;
}	}
return $ip;	return $ip_long;
} /**	} /**
Zeile 5824	Zeile 6153
function verify_files($path=MYBB_ROOT, $count=0) { global $mybb, $checksums, $bad_verify_files;	function verify_files($path=MYBB_ROOT, $count=0) { global $mybb, $checksums, $bad_verify_files;

// We don't need to check these types of files $ignore = array(".", "..", ".svn", "config.php", "settings.php", "Thumb.db", "config.default.php", "lock", "htaccess.txt", "logo.gif"); $ignore_ext = array("attach");	// We don't need to check these types of files $ignore = array(".", "..", ".svn", "config.php", "settings.php", "Thumb.db", "config.default.php", "lock", "htaccess.txt", "logo.gif"); $ignore_ext = array("attach");

if(substr($path, -1, 1) == "/") { $path = substr($path, 0, -1); }	if(substr($path, -1, 1) == "/") { $path = substr($path, 0, -1); }

if(!is_array($bad_verify_files)) { $bad_verify_files = array(); }	if(!is_array($bad_verify_files)) { $bad_verify_files = array(); }

// Make sure that we're in a directory and it's not a symbolic link	// Make sure that we're in a directory and it's not a symbolic link
if(@is_dir($path) && !@is_link($path)) { if($dh = @opendir($path)) {	if(@is_dir($path) && !@is_link($path)) { if($dh = @opendir($path)) {
// Loop through all the files/directories in this directory	// Loop through all the files/directories in this directory
while(($file = @readdir($dh)) !== false) {	while(($file = @readdir($dh)) !== false) {
if(in_array($file, $ignore) \|\| in_array(get_extension($file), $ignore_ext))	if(in_array($file, $ignore) \|\| in_array(get_extension($file), $ignore_ext))
{	{
continue; }	continue; }

// Recurse through the directory tree if(is_dir($path."/".$file)) { verify_files($path."/".$file, ($count+1));	// Recurse through the directory tree if(is_dir($path."/".$file)) { verify_files($path."/".$file, ($count+1));
continue;	continue;
}	}

// We only need the last part of the path (from the MyBB directory to the file. i.e. inc/functions.php) $file_path = ".".str_replace(substr(MYBB_ROOT, 0, -1), "", $path)."/".$file;	// We only need the last part of the path (from the MyBB directory to the file. i.e. inc/functions.php) $file_path = ".".str_replace(substr(MYBB_ROOT, 0, -1), "", $path)."/".$file;

// Does this file even exist in our official list? Perhaps it's a plugin if(array_key_exists($file_path, $checksums)) {	// Does this file even exist in our official list? Perhaps it's a plugin if(array_key_exists($file_path, $checksums)) {
Zeile 5873	Zeile 6202
$contents .= fread($handle, 8192); } fclose($handle);	$contents .= fread($handle, 8192); } fclose($handle);

$md5 = md5($contents);	$md5 = md5($contents);

// Does it match any of our hashes (unix/windows new lines taken into consideration with the hashes) if(!in_array($md5, $checksums[$file_path]))	// Does it match any of our hashes (unix/windows new lines taken into consideration with the hashes) if(!in_array($md5, $checksums[$file_path]))
{	{
$bad_verify_files[] = array("status" => "changed", "path" => $file_path); } } unset($checksums[$file_path]);	$bad_verify_files[] = array("status" => "changed", "path" => $file_path); } } unset($checksums[$file_path]);
} @closedir($dh); } }	} @closedir($dh); } }
if($count == 0) { if(!empty($checksums))	if($count == 0) { if(!empty($checksums))
Zeile 5902	Zeile 6231
} } }	} } }

// uh oh if($count == 0) {	// uh oh if($count == 0) {
Zeile 5914	Zeile 6243
* Returns a signed value equal to an integer * * @param int The integer	* Returns a signed value equal to an integer * * @param int The integer
* @return string The signed equivallent	* @return string The signed equivalent
*/ function signed($int) {	*/ function signed($int) {
Zeile 5932	Zeile 6261
* Returns a securely generated seed for PHP's RNG (Random Number Generator) * * @param int Length of the seed bytes (8 is default. Provides good cryptographic variance)	* Returns a securely generated seed for PHP's RNG (Random Number Generator) * * @param int Length of the seed bytes (8 is default. Provides good cryptographic variance)
* @return int An integer equivilent of a secure hexadecimal seed	* @return int An integer equivalent of a secure hexadecimal seed
*/ function secure_seed_rng($count=8) { $output = '';	*/ function secure_seed_rng($count=8) { $output = '';
// Try the unix/linux method if(@is_readable('/dev/urandom') && ($handle = @fopen('/dev/urandom', 'rb'))) { $output = @fread($handle, $count); @fclose($handle);	// DIRECTORY_SEPARATOR checks if running windows if(DIRECTORY_SEPARATOR != '\\') { // Unix/Linux // Use OpenSSL when available if(function_exists('openssl_random_pseudo_bytes')) { $output = openssl_random_pseudo_bytes($count); } // Try mcrypt elseif(function_exists('mcrypt_create_iv')) { $output = mcrypt_create_iv($count, MCRYPT_DEV_URANDOM); } // Try /dev/urandom elseif(@is_readable('/dev/urandom') && ($handle = @fopen('/dev/urandom', 'rb'))) { $output = @fread($handle, $count); @fclose($handle); } } else { // Windows // Use OpenSSL when available // PHP <5.3.4 had a bug which makes that function unusable on Windows if(function_exists('openssl_random_pseudo_bytes') && version_compare(PHP_VERSION, '5.3.4', '>=')) { $output = openssl_random_pseudo_bytes($count); } // Try mcrypt elseif(function_exists('mcrypt_create_iv')) { $output = mcrypt_create_iv($count, MCRYPT_RAND); } // Try Windows CAPICOM before using our own generator elseif(class_exists('COM')) { try { $CAPI_Util = new COM('CAPICOM.Utilities.1'); if(is_callable(array($CAPI_Util, 'GetRandom'))) { $output = $CAPI_Util->GetRandom($count, 0); } } catch (Exception $e) { } }
}	}

// Didn't work? Do we still not have enough bytes? Use our own (less secure) rng generator if(strlen($output) < $count) { $output = '';	// Didn't work? Do we still not have enough bytes? Use our own (less secure) rng generator if(strlen($output) < $count) { $output = '';

// Close to what PHP basically uses internally to seed, but not quite. $unique_state = microtime().@getmypid();	// Close to what PHP basically uses internally to seed, but not quite. $unique_state = microtime().@getmypid();

for($i = 0; $i < $count; $i += 16) { $unique_state = md5(microtime().$unique_state); $output .= pack('H*', md5($unique_state));	for($i = 0; $i < $count; $i += 16) { $unique_state = md5(microtime().$unique_state); $output .= pack('H*', md5($unique_state));
} }	} }
// /dev/urandom and openssl will always be twice as long as $count. base64_encode will roughly take up 33% more space but crc32 will put it to 32 characters $output = hexdec(substr(dechex(crc32(base64_encode($output))), 0, $count));	// /dev/urandom and openssl will always be twice as long as $count. base64_encode will roughly take up 33% more space but crc32 will put it to 32 characters $output = hexdec(substr(dechex(crc32(base64_encode($output))), 0, $count));

return $output; } /** * Wrapper function for mt_rand. Automatically seeds using a secure seed once. *	return $output; } /** * Wrapper function for mt_rand. Automatically seeds using a secure seed once. *
* @param int Optional lowest value to be returned (default: 0) * @param int Optional highest value to be returned (default: mt_getrandmax())	* @param int Optional lowest value to be returned (default: 0) * @param int Optional highest value to be returned (default: mt_getrandmax())
* @param boolean True forces it to reseed the RNG first	* @param boolean True forces it to reseed the RNG first
* @return int An integer equivilent of a secure hexadecimal seed	* @return int An integer equivalent of a secure hexadecimal seed
*/ function my_rand($min=null, $max=null, $force_seed=false) {	*/ function my_rand($min=null, $max=null, $force_seed=false) {
Zeile 5983	Zeile 6354
{ mt_srand(secure_seed_rng()); $seeded = true;	{ mt_srand(secure_seed_rng()); $seeded = true;

$obfuscator = abs((int) secure_seed_rng());	$obfuscator = abs((int) secure_seed_rng());

// Ensure that $obfuscator is <= mt_getrandmax() for 64 bit systems. if($obfuscator > mt_getrandmax()) {	// Ensure that $obfuscator is <= mt_getrandmax() for 64 bit systems. if($obfuscator > mt_getrandmax()) {
Zeile 6003	Zeile 6374
else { return mt_rand($min, $max);	else { return mt_rand($min, $max);
} }	} }
else { $val = mt_rand() ^ $obfuscator;	else { $val = mt_rand() ^ $obfuscator;
Zeile 6023	Zeile 6394
function trim_blank_chrs($string, $charlist=false) { $hex_chrs = array(	function trim_blank_chrs($string, $charlist=false) { $hex_chrs = array(
0x20 => 1,	0x20 => 1,
0x09 => 1, 0x0A => 1, 0x0D => 1, 0x0B => 1,	0x09 => 1, 0x0A => 1, 0x0D => 1, 0x0B => 1,
	0xAD => 1, 0xA0 => 1, 0xAD => 1, 0xBF => 1, 0x81 => 1, 0x8D => 1, 0x90 => 1, 0x9D => 1,
0xCC => array(0xB7 => 1, 0xB8 => 1), // \x{0337} or \x{0338} 0xE1 => array(0x85 => array(0x9F => 1, 0xA0 => 1)), // \x{115F} or \x{1160} 0xE2 => array(0x80 => array(0x80 => 1, 0x81 => 1, 0x82 => 1, 0x83 => 1, 0x84 => 1, 0x85 => 1, 0x86 => 1, 0x87 => 1, 0x88 => 1, 0x89 => 1, 0x8A => 1, 0x8B => 1, // \x{2000} to \x{200B}	0xCC => array(0xB7 => 1, 0xB8 => 1), // \x{0337} or \x{0338} 0xE1 => array(0x85 => array(0x9F => 1, 0xA0 => 1)), // \x{115F} or \x{1160} 0xE2 => array(0x80 => array(0x80 => 1, 0x81 => 1, 0x82 => 1, 0x83 => 1, 0x84 => 1, 0x85 => 1, 0x86 => 1, 0x87 => 1, 0x88 => 1, 0x89 => 1, 0x8A => 1, 0x8B => 1, // \x{2000} to \x{200B}
Zeile 6039	Zeile 6418
0xBE => array(0xA0 => 1), // \x{FFA0} 0xBF => array(0xB9 => 1, 0xBA => 1, 0xBB => 1)), // \x{FFF9} to \x{FFFB} );	0xBE => array(0xA0 => 1), // \x{FFA0} 0xBF => array(0xB9 => 1, 0xBA => 1, 0xBB => 1)), // \x{FFF9} to \x{FFFB} );

$hex_chrs_rev = array( 0x20 => 1, 0x09 => 1, 0x0A => 1, 0x0D => 1, 0x0B => 1,	$hex_chrs_rev = array( 0x20 => 1, 0x09 => 1, 0x0A => 1, 0x0D => 1, 0x0B => 1,
	0xA0 => array(0xC2 => 1), 0xAD => array(0xC2 => 1), 0xBF => array(0xC2 => 1), 0x81 => array(0xC2 => 1), 0x8D => array(0xC2 => 1), 0x90 => array(0xC2 => 1), 0x9D => array(0xC2 => 1),
0xB8 => array(0xCC => 1), // \x{0338} 0xB7 => array(0xCC => 1), // \x{0337} 0xA0 => array(0x85 => array(0xE1 => 1)), // \x{1160}	0xB8 => array(0xCC => 1), // \x{0338} 0xB7 => array(0xCC => 1), // \x{0337} 0xA0 => array(0x85 => array(0xE1 => 1)), // \x{1160}
Zeile 6078	Zeile 6464
0xBA => array(0xBF => array(0xEF => 1)), // \x{FFFA} 0xBB => array(0xBF => array(0xEF => 1)), // \x{FFFB} );	0xBA => array(0xBF => array(0xEF => 1)), // \x{FFFA} 0xBB => array(0xBF => array(0xEF => 1)), // \x{FFFB} );

// Start from the beginning and work our way in do { // Check to see if we have matched a first character in our utf-16 array $offset = match_sequence($string, $hex_chrs);	// Start from the beginning and work our way in do { // Check to see if we have matched a first character in our utf-16 array $offset = match_sequence($string, $hex_chrs);
if(!$offset) { // If not, then we must have a "good" character and we don't need to do anymore processing break; } $string = substr($string, $offset);	if(!$offset) { // If not, then we must have a "good" character and we don't need to do anymore processing break; } $string = substr($string, $offset);
} while(++$i);	} while(++$i);

// Start from the end and work our way in $string = strrev($string); do	// Start from the end and work our way in $string = strrev($string); do
Zeile 6108	Zeile 6494
} while(++$i); $string = strrev($string);	} while(++$i); $string = strrev($string);

if($charlist !== false) { $string = trim($string, $charlist);	if($charlist !== false) { $string = trim($string, $charlist);
}	}
else { $string = trim($string); }	else { $string = trim($string); }

return $string; }	return $string; }
Zeile 6127	Zeile 6513
{ return 0; }	{ return 0; }

$ord = ord($string[$i]); if(array_key_exists($ord, $array)) { $level = $array[$ord]; ++$n; if(is_array($level))	$ord = ord($string[$i]); if(array_key_exists($ord, $array)) { $level = $array[$ord]; ++$n; if(is_array($level))
{	{
++$i; return match_sequence($string, $level, $i, $n); } return $n; }	++$i; return match_sequence($string, $level, $i, $n); } return $n; }

return 0; } /** * Obtain the version of GD installed.	return 0; } /** * Obtain the version of GD installed.
*	*
* @return float Version of GD */ function gd_version() { static $gd_version;	* @return float Version of GD */ function gd_version() { static $gd_version;

if($gd_version) { return $gd_version;	if($gd_version) { return $gd_version;
Zeile 6161	Zeile 6547
{ return; }	{ return; }

if(function_exists("gd_info")) { $gd_info = gd_info();	if(function_exists("gd_info")) { $gd_info = gd_info();
preg_match('/\d/', $gd_info['GD Version'], $gd); $gd_version = $gd[0];	preg_match('/\d/', $gd_info['GD Version'], $gd); $gd_version = $gd[0];
} else {	} else {
Zeile 6178	Zeile 6564
preg_match('/\d/', $info, $gd); $gd_version = $gd[0]; }	preg_match('/\d/', $info, $gd); $gd_version = $gd[0]; }

return $gd_version;	return $gd_version;
}	}

	/** * Validates an UTF-8 string. * * @param string The string to be checked * @param boolean Allow 4 byte UTF-8 characters? * @param boolean Return the cleaned string? * @return string/boolean Cleaned string or boolean */ function validate_utf8_string($input, $allow_mb4=true, $return=true) { // Valid UTF-8 sequence? if(!preg_match('##u', $input)) { $string = ''; $len = strlen($input); for($i = 0; $i < $len; $i++) { $c = ord($input[$i]); if($c > 128) { if($c > 247 \|\| $c <= 191) { if($return) { $string .= '?'; continue; } else { return false; } } elseif($c > 239) { $bytes = 4; } elseif($c > 223) { $bytes = 3; } elseif($c > 191) { $bytes = 2; } if(($i + $bytes) > $len) { if($return) { $string .= '?'; break; } else { return false; } } $valid = true; $multibytes = $input[$i]; while($bytes > 1) { $i++; $b = ord($input[$i]); if($b < 128 \|\| $b > 191) { if($return) { $valid = false; $string .= '?'; break; } else { return false; } } else { $multibytes .= $input[$i]; } $bytes--; } if($valid) { $string .= $multibytes; } } else { $string .= $input[$i]; } } $input = $string; } if($return) { if($allow_mb4) { return $input; } else { return preg_replace("#[^\\x00-\\x7F][\\x80-\\xBF]{3,}#", '?', $input); } } else { if($allow_mb4) { return true; } else { return !preg_match("#[^\\x00-\\x7F][\\x80-\\xBF]{3,}#", $input); } } }
?>	?>