Vergleich usercp.php - 1.8.3 - 1.8.20

Keine Änderungen Hinzugefügt Modifiziert Entfernt
Zeile 10	Zeile 10
define("IN_MYBB", 1); define('THIS_SCRIPT', 'usercp.php');	define("IN_MYBB", 1); define('THIS_SCRIPT', 'usercp.php');
	define("ALLOWABLE_PAGE", "removesubscription,removesubscriptions");
$templatelist = "usercp,usercp_nav,usercp_profile,usercp_changename,usercp_password,usercp_subscriptions_thread,forumbit_depth2_forum_lastpost,usercp_forumsubscriptions_forum,postbit_reputation_formatted,usercp_subscriptions_thread_icon"; $templatelist .= ",usercp_usergroups_memberof_usergroup,usercp_usergroups_memberof,usercp_usergroups_joinable_usergroup,usercp_usergroups_joinable,usercp_usergroups,usercp_nav_attachments,usercp_options_style,usercp_warnings_warning_post";	$templatelist = "usercp,usercp_nav,usercp_profile,usercp_changename,usercp_password,usercp_subscriptions_thread,forumbit_depth2_forum_lastpost,usercp_forumsubscriptions_forum,postbit_reputation_formatted,usercp_subscriptions_thread_icon"; $templatelist .= ",usercp_usergroups_memberof_usergroup,usercp_usergroups_memberof,usercp_usergroups_joinable_usergroup,usercp_usergroups_joinable,usercp_usergroups,usercp_nav_attachments,usercp_options_style,usercp_warnings_warning_post";
Zeile 17	Zeile 18
$templatelist .= ",usercp_attachments_attachment,usercp_attachments,usercp_profile_away,usercp_profile_customfield,usercp_profile_profilefields,usercp_profile_customtitle,usercp_forumsubscriptions_none,usercp_profile_customtitle_currentcustom"; $templatelist .= ",usercp_forumsubscriptions,usercp_subscriptions_none,usercp_subscriptions,usercp_options_pms_from_buddys,usercp_options_tppselect,usercp_options_pppselect,usercp_themeselector,usercp_profile_customtitle_reverttitle"; $templatelist .= ",usercp_nav_editsignature,usercp_referrals,usercp_notepad,usercp_latest_threads_threads,forumdisplay_thread_gotounread,usercp_latest_threads,usercp_subscriptions_remove,usercp_nav_messenger_folder,usercp_profile_profilefields_text";	$templatelist .= ",usercp_attachments_attachment,usercp_attachments,usercp_profile_away,usercp_profile_customfield,usercp_profile_profilefields,usercp_profile_customtitle,usercp_forumsubscriptions_none,usercp_profile_customtitle_currentcustom"; $templatelist .= ",usercp_forumsubscriptions,usercp_subscriptions_none,usercp_subscriptions,usercp_options_pms_from_buddys,usercp_options_tppselect,usercp_options_pppselect,usercp_themeselector,usercp_profile_customtitle_reverttitle"; $templatelist .= ",usercp_nav_editsignature,usercp_referrals,usercp_notepad,usercp_latest_threads_threads,forumdisplay_thread_gotounread,usercp_latest_threads,usercp_subscriptions_remove,usercp_nav_messenger_folder,usercp_profile_profilefields_text";
$templatelist .= ",usercp_editsig_suspended,usercp_editsig,usercp_avatar_current,usercp_options_timezone_option,usercp_drafts";	$templatelist .= ",usercp_editsig_suspended,usercp_editsig,usercp_avatar_current,usercp_options_timezone_option,usercp_drafts,usercp_options_language,usercp_options_date_format,usercp_profile_website,usercp_latest_subscribed,usercp_warnings";
$templatelist .= ",usercp_avatar,usercp_editlists_userusercp_editlists,usercp_drafts_draft,usercp_usergroups_joingroup,usercp_attachments_none,usercp_avatar_upload,usercp_options_timezone,usercp_usergroups_joinable_usergroup_join";	$templatelist .= ",usercp_avatar,usercp_editlists_userusercp_editlists,usercp_drafts_draft,usercp_usergroups_joingroup,usercp_attachments_none,usercp_avatar_upload,usercp_options_timezone,usercp_usergroups_joinable_usergroup_join";
$templatelist .= ",usercp_warnings_warning,usercp_warnings,usercp_latest_subscribed_threads,usercp_latest_subscribed,usercp_nav_messenger_tracking,multipage,multipage_end,multipage_jump_page,multipage_nextpage,multipage_page,multipage_page_current,multipage_page_link_current,multipage_prevpage,multipage_start,usercp_options_language,usercp_options_date_format"; $templatelist .= ",codebuttons,smilieinsert_getmore,smilieinsert_smilie,smilieinsert_smilie_empty,smilieinsert,usercp_nav_messenger_compose,usercp_options_language_option,usercp_editlists";	$templatelist .= ",usercp_warnings_warning,usercp_nav_messenger_tracking,multipage,multipage_end,multipage_jump_page,multipage_nextpage,multipage_page,multipage_page_current,multipage_page_link_current,multipage_prevpage,multipage_start"; $templatelist .= ",codebuttons,usercp_nav_messenger_compose,usercp_options_language_option,usercp_editlists,usercp_profile_contact_fields_field,usercp_latest_subscribed_threads,usercp_profile_contact_fields,usercp_profile_day,usercp_nav_home";
$templatelist .= ",usercp_profile_profilefields_select_option,usercp_profile_profilefields_multiselect,usercp_profile_profilefields_select,usercp_profile_profilefields_textarea,usercp_profile_profilefields_radio,usercp_profile_profilefields_checkbox"; $templatelist .= ",usercp_options_tppselect_option,usercp_options_pppselect_option,forumbit_depth2_forum_lastpost_never,forumbit_depth2_forum_lastpost_hidden,usercp_avatar_auto_resize_auto,usercp_avatar_auto_resize_user,usercp_options";	$templatelist .= ",usercp_profile_profilefields_select_option,usercp_profile_profilefields_multiselect,usercp_profile_profilefields_select,usercp_profile_profilefields_textarea,usercp_profile_profilefields_radio,usercp_profile_profilefields_checkbox"; $templatelist .= ",usercp_options_tppselect_option,usercp_options_pppselect_option,forumbit_depth2_forum_lastpost_never,forumbit_depth2_forum_lastpost_hidden,usercp_avatar_auto_resize_auto,usercp_avatar_auto_resize_user,usercp_options";
$templatelist .= ",usercp_editlists_no_buddies,usercp_editlists_no_ignored,usercp_editlists_no_requests,usercp_editlists_received_requests,usercp_editlists_sent_requests,usercp_drafts_draft_thread,usercp_drafts_draft_forum"; $templatelist .= ",usercp_usergroups_leader_usergroup_memberlist,usercp_usergroups_leader_usergroup_moderaterequests,usercp_usergroups_memberof_usergroup_leaveprimary,usercp_usergroups_memberof_usergroup_display,usercp_email";	$templatelist .= ",usercp_editlists_no_buddies,usercp_editlists_no_ignored,usercp_editlists_no_requests,usercp_editlists_received_requests,usercp_editlists_sent_requests,usercp_drafts_draft_thread,usercp_drafts_draft_forum,usercp_editlists_user"; $templatelist .= ",usercp_usergroups_leader_usergroup_memberlist,usercp_usergroups_leader_usergroup_moderaterequests,usercp_usergroups_memberof_usergroup_leaveprimary,usercp_usergroups_memberof_usergroup_display,usercp_email,usercp_options_pms";
$templatelist .= ",usercp_usergroups_memberof_usergroup_leaveleader,usercp_usergroups_memberof_usergroup_leaveother,usercp_usergroups_memberof_usergroup_leave,usercp_usergroups_joinable_usergroup_description,usercp_options_time_format";	$templatelist .= ",usercp_usergroups_memberof_usergroup_leaveleader,usercp_usergroups_memberof_usergroup_leaveother,usercp_usergroups_memberof_usergroup_leave,usercp_usergroups_joinable_usergroup_description,usercp_options_time_format";
$templatelist .= ",usercp_editlists_sent_request,usercp_editlists_received_request,usercp_drafts_none,usercp_usergroups_memberof_usergroup_setdisplay,usercp_usergroups_memberof_usergroup_description,usercp_editlists_user,usercp_profile_day,usercp_profile_contact_fields,usercp_profile_contact_fields_field, usercp_profile_website";	$templatelist .= ",usercp_editlists_sent_request,usercp_editlists_received_request,usercp_drafts_none,usercp_usergroups_memberof_usergroup_setdisplay,usercp_usergroups_memberof_usergroup_description,usercp_options_quick_reply"; $templatelist .= ",usercp_addsubscription_thread,forumdisplay_password,forumdisplay_password_wrongpass,";
require_once "./global.php"; require_once MYBB_ROOT."inc/functions_post.php";	require_once "./global.php"; require_once MYBB_ROOT."inc/functions_post.php";
Zeile 44	Zeile 46
if(!$mybb->user['pmfolders']) {	if(!$mybb->user['pmfolders']) {
$mybb->user['pmfolders'] = "1".$lang->folder_inbox."$%%$2".$lang->folder_sent_items."$%%$3".$lang->folder_drafts."$%%$4".$lang->folder_trash; $db->update_query("users", array('pmfolders' => $mybb->user['pmfolders']), "uid='".$mybb->user['uid']."'");	$mybb->user['pmfolders'] = '1$%%$2$%%$3$%%$4'; $db->update_query('users', array('pmfolders' => $mybb->user['pmfolders']), "uid = {$mybb->user['uid']}");
} $errors = '';	} $errors = '';
Zeile 53	Zeile 55
$mybb->input['action'] = $mybb->get_input('action'); usercp_menu();	$mybb->input['action'] = $mybb->get_input('action'); usercp_menu();
	$server_http_referer = htmlentities($_SERVER['HTTP_REFERER']);
$plugins->run_hooks("usercp_start"); if($mybb->input['action'] == "do_editsig" && $mybb->request_method == "post") {	$plugins->run_hooks("usercp_start"); if($mybb->input['action'] == "do_editsig" && $mybb->request_method == "post") {
$parser_options = array( 'allow_html' => $mybb->settings['sightml'], 'filter_badwords' => 1, 'allow_mycode' => $mybb->settings['sigmycode'], 'allow_smilies' => $mybb->settings['sigsmilies'], 'allow_imgcode' => $mybb->settings['sigimgcode'], "filter_badwords" => 1	require_once MYBB_ROOT."inc/datahandlers/user.php"; $userhandler = new UserDataHandler(); $data = array( 'uid' => $mybb->user['uid'], 'signature' => $mybb->get_input('signature'),
);	);
if($mybb->user['showimages'] != 1 && $mybb->user['uid'] != 0)	$userhandler->set_data($data); if(!$userhandler->verify_signature())
{	{
$parser_options['allow_imgcode'] = 0; } $parsed_sig = $parser->parse_message($mybb->get_input('signature'), $parser_options); if((($mybb->settings['sigimgcode'] == 0 && $mybb->settings['sigsmilies'] != 1) && substr_count($parsed_sig, "<img") > 0) \|\| (($mybb->settings['sigimgcode'] == 1 \|\| $mybb->settings['sigsmilies'] == 1) && substr_count($parsed_sig, "<img") > $mybb->settings['maxsigimages']) ) { if($mybb->settings['sigimgcode'] == 1) { $imgsallowed = $mybb->settings['maxsigimages']; } else { $imgsallowed = 0; } $lang->too_many_sig_images2 = $lang->sprintf($lang->too_many_sig_images2, $imgsallowed); $error = inline_error($lang->too_many_sig_images." ".$lang->too_many_sig_images2); $mybb->input['preview'] = 1; } else if($mybb->settings['siglength'] > 0) { if($mybb->settings['sigcountmycode'] == 0) { $parsed_sig = $parser->text_parse_message($mybb->get_input('signature')); } else { $parsed_sig = $mybb->get_input('signature'); } $parsed_sig = preg_replace("#\s#", "", $parsed_sig); $sig_length = my_strlen($parsed_sig); if($sig_length > $mybb->settings['siglength']) { $lang->sig_too_long = $lang->sprintf($lang->sig_too_long, $mybb->settings['siglength']); if($sig_length - $mybb->settings['siglength'] > 1) { $lang->sig_too_long .= $lang->sprintf($lang->sig_remove_chars_plural, $sig_length-$mybb->settings['siglength']); } else { $lang->sig_too_long .= $lang->sig_remove_chars_singular; } $error = inline_error($lang->sig_too_long); }	$error = inline_error($userhandler->get_friendly_errors());
}	}

if(isset($error) \|\| !empty($mybb->input['preview'])) { $mybb->input['action'] = "editsig";	if(isset($error) \|\| !empty($mybb->input['preview'])) { $mybb->input['action'] = "editsig";
Zeile 187	Zeile 147
$plugins->run_hooks("usercp_do_profile_start");	$plugins->run_hooks("usercp_do_profile_start");
if($mybb->get_input('away', 1) == 1 && $mybb->settings['allowaway'] != 0)	if($mybb->get_input('away', MyBB::INPUT_INT) == 1 && $mybb->settings['allowaway'] != 0)
{ $awaydate = TIME_NOW; if(!empty($mybb->input['awayday'])) { // If the user has indicated that they will return on a specific day, but not month or year, assume it is current month and year	{ $awaydate = TIME_NOW; if(!empty($mybb->input['awayday'])) { // If the user has indicated that they will return on a specific day, but not month or year, assume it is current month and year
if(!$mybb->get_input('awaymonth', 1))	if(!$mybb->get_input('awaymonth', MyBB::INPUT_INT))
{ $mybb->input['awaymonth'] = my_date('n', $awaydate); }	{ $mybb->input['awaymonth'] = my_date('n', $awaydate); }
if(!$mybb->get_input('awayyear', 1))	if(!$mybb->get_input('awayyear', MyBB::INPUT_INT))
{ $mybb->input['awayyear'] = my_date('Y', $awaydate); }	{ $mybb->input['awayyear'] = my_date('Y', $awaydate); }
Zeile 215	Zeile 175
} $returndate = "{$return_day}-{$return_month}-{$return_year}";	} $returndate = "{$return_day}-{$return_month}-{$return_year}";
}	}
else { $returndate = "";	else { $returndate = "";
Zeile 238	Zeile 198
} $bday = array(	} $bday = array(
"day" => $mybb->get_input('bday1', 1), "month" => $mybb->get_input('bday2', 1), "year" => $mybb->get_input('bday3', 1)	"day" => $mybb->get_input('bday1', MyBB::INPUT_INT), "month" => $mybb->get_input('bday2', MyBB::INPUT_INT), "year" => $mybb->get_input('bday3', MyBB::INPUT_INT)
); // Set up user handler.	); // Set up user handler.
require_once "inc/datahandlers/user.php";	require_once MYBB_ROOT."inc/datahandlers/user.php";
$userhandler = new UserDataHandler("update"); $user = array(	$userhandler = new UserDataHandler("update"); $user = array(
Zeile 255	Zeile 215
"birthday" => $bday, "birthdayprivacy" => $mybb->get_input('birthdayprivacy'), "away" => $away,	"birthday" => $bday, "birthdayprivacy" => $mybb->get_input('birthdayprivacy'), "away" => $away,
"profile_fields" => $mybb->get_input('profile_fields', 2)	"profile_fields" => $mybb->get_input('profile_fields', MyBB::INPUT_ARRAY)
);	);
foreach(array('icq', 'aim', 'yahoo', 'skype', 'google') as $cfield)	foreach(array('icq', 'yahoo', 'skype', 'google') as $cfield)
{ $csetting = 'allow'.$cfield.'field'; if($mybb->settings[$csetting] == '')	{ $csetting = 'allow'.$cfield.'field'; if($mybb->settings[$csetting] == '')
{ continue; } if($mybb->settings[$csetting] != -1 && !is_member($mybb->settings[$csetting])) {	{ continue; } if(!is_member($mybb->settings[$csetting])) {
continue;	continue;
}	}
if($cfield == 'icq')	if($cfield == 'icq')
{	{
$user[$cfield] = $mybb->get_input($cfield, 1);	$user[$cfield] = $mybb->get_input($cfield, 1);
} else {	} else {
$user[$cfield] = $mybb->get_input($cfield); } }	$user[$cfield] = $mybb->get_input($cfield); } }

if($mybb->usergroup['canchangewebsite'] == 1) { $user['website'] = $mybb->get_input('website');	if($mybb->usergroup['canchangewebsite'] == 1) { $user['website'] = $mybb->get_input('website');
Zeile 291	Zeile 251
{ $user['usertitle'] = $mybb->get_input('usertitle'); }	{ $user['usertitle'] = $mybb->get_input('usertitle'); }
else if(!empty($mybb->input['reverttitle']))	elseif(!empty($mybb->input['reverttitle']))
{ $user['usertitle'] = ''; }	{ $user['usertitle'] = ''; }
Zeile 301	Zeile 261
if(!$userhandler->validate_user()) { $errors = $userhandler->get_friendly_errors();	if(!$userhandler->validate_user()) { $errors = $userhandler->get_friendly_errors();
	$raw_errors = $userhandler->get_errors();

// Set allowed value otherwise select options disappear if(in_array($lang->userdata_invalid_birthday_privacy, $errors))	// Set to stored value if invalid if(array_key_exists("invalid_birthday_privacy", $raw_errors))
{	{
$mybb->input['birthdayprivacy'] = 'none';	$mybb->input['birthdayprivacy'] = $mybb->user['birthdayprivacy'];
} $errors = inline_error($errors);	} $errors = inline_error($errors);
Zeile 326	Zeile 287
{ $user = $mybb->input; $bday = array();	{ $user = $mybb->input; $bday = array();
$bday[0] = $mybb->get_input('bday1', 1); $bday[1] = $mybb->get_input('bday2', 1); $bday[2] = $mybb->get_input('bday3', 1);	$bday[0] = $mybb->get_input('bday1', MyBB::INPUT_INT); $bday[1] = $mybb->get_input('bday2', MyBB::INPUT_INT); $bday[2] = $mybb->get_input('bday3', MyBB::INPUT_INT);
} else {	} else {
Zeile 373	Zeile 334
{ $allselected = " selected=\"selected\""; }	{ $allselected = " selected=\"selected\""; }
else if($user['birthdayprivacy'] == 'none')	elseif($user['birthdayprivacy'] == 'none')
{ $noneselected = " selected=\"selected\""; }	{ $noneselected = " selected=\"selected\""; }
else if($user['birthdayprivacy'] == 'age')	elseif($user['birthdayprivacy'] == 'age')
{ $ageselected = " selected=\"selected\""; }	{ $ageselected = " selected=\"selected\""; }
if($user['website'] == "" \|\| $user['website'] == "http://")	if(!my_validate_url($user['website']))
{	{
$user['website'] = "http://";	$user['website'] = '';
} else {	} else {
Zeile 394	Zeile 355
if($user['icq'] != "0") { $user['icq'] = (int)$user['icq'];	if($user['icq'] != "0") { $user['icq'] = (int)$user['icq'];
}	}
if($user['icq'] == 0)	if($user['icq'] == 0)
{	{
$user['icq'] = '';	$user['icq'] = '';
}	}
if($errors) { $user['skype'] = htmlspecialchars_uni($user['skype']); $user['google'] = htmlspecialchars_uni($user['google']);	if($errors) { $user['skype'] = htmlspecialchars_uni($user['skype']); $user['google'] = htmlspecialchars_uni($user['google']);
$user['aim'] = htmlspecialchars_uni($user['aim']);
$user['yahoo'] = htmlspecialchars_uni($user['yahoo']); } $contact_fields = array(); $contactfields = '';	$user['yahoo'] = htmlspecialchars_uni($user['yahoo']); } $contact_fields = array(); $contactfields = '';
foreach(array('icq', 'aim', 'yahoo', 'skype', 'google') as $cfield)	$cfieldsshow = false; foreach(array('icq', 'yahoo', 'skype', 'google') as $cfield)
{ $contact_fields[$cfield] = ''; $csetting = 'allow'.$cfield.'field';	{ $contact_fields[$cfield] = ''; $csetting = 'allow'.$cfield.'field';
Zeile 420	Zeile 382
continue; }	continue; }
if($mybb->settings[$csetting] != -1 && !is_member($mybb->settings[$csetting]))	if(!is_member($mybb->settings[$csetting]))
{ continue; }	{ continue; }
Zeile 434	Zeile 396
eval('$contact_fields[$cfield] = "'.$templates->get('usercp_profile_contact_fields_field').'";'); }	eval('$contact_fields[$cfield] = "'.$templates->get('usercp_profile_contact_fields_field').'";'); }
if(!empty($cfieldsshow))	if($cfieldsshow)
{ eval('$contactfields = "'.$templates->get('usercp_profile_contact_fields').'";'); }	{ eval('$contactfields = "'.$templates->get('usercp_profile_contact_fields').'";'); }
Zeile 453	Zeile 415
$awaycheck[0] = "checked=\"checked\""; } $returndate = array();	$awaycheck[0] = "checked=\"checked\""; } $returndate = array();
$returndate[0] = $mybb->get_input('awayday', 1); $returndate[1] = $mybb->get_input('awaymonth', 1); $returndate[2] = $mybb->get_input('awayyear', 1);	$returndate[0] = $mybb->get_input('awayday', MyBB::INPUT_INT); $returndate[1] = $mybb->get_input('awaymonth', MyBB::INPUT_INT); $returndate[2] = $mybb->get_input('awayyear', MyBB::INPUT_INT);
$user['awayreason'] = htmlspecialchars_uni($mybb->get_input('awayreason')); } else	$user['awayreason'] = htmlspecialchars_uni($mybb->get_input('awayreason')); } else
Zeile 511	Zeile 473
// Custom profile fields baby! $altbg = "trow1"; $requiredfields = $customfields = '';	// Custom profile fields baby! $altbg = "trow1"; $requiredfields = $customfields = '';
$mybb->input['profile_fields'] = $mybb->get_input('profile_fields', 2);	$mybb->input['profile_fields'] = $mybb->get_input('profile_fields', MyBB::INPUT_ARRAY);
$pfcache = $cache->read('profilefields');	$pfcache = $cache->read('profilefields');
Zeile 519	Zeile 481
{ foreach($pfcache as $profilefield) {	{ foreach($pfcache as $profilefield) {
if(empty($profilefield['editableby']) \|\| ($profilefield['editableby'] != -1 && !is_member($profilefield['editableby']))) { continue; } // Does this field have a minimum post count? if($profilefield['postnum'] && $profilefield['postnum'] > $mybb->user['postnum'])	if(!is_member($profilefield['editableby']) \|\| ($profilefield['postnum'] && $profilefield['postnum'] > $mybb->user['postnum']))
{ continue; }	{ continue; }
Zeile 538	Zeile 494
if(isset($thing[1])) { $options = $thing[1];	if(isset($thing[1])) { $options = $thing[1];
} else {	} else {
$options = array(); } $field = "fid{$profilefield['fid']}";	$options = array(); } $field = "fid{$profilefield['fid']}";
Zeile 550	Zeile 506
if(!isset($mybb->input['profile_fields'][$field])) { $mybb->input['profile_fields'][$field] = '';	if(!isset($mybb->input['profile_fields'][$field])) { $mybb->input['profile_fields'][$field] = '';
}	}
$userfield = $mybb->input['profile_fields'][$field]; } else	$userfield = $mybb->input['profile_fields'][$field]; } else
Zeile 566	Zeile 522
else { $useropts = explode("\n", $userfield);	else { $useropts = explode("\n", $userfield);
}	}
if(is_array($useropts))	if(is_array($useropts))
{	{
foreach($useropts as $key => $val) { $val = htmlspecialchars_uni($val);	foreach($useropts as $key => $val) { $val = htmlspecialchars_uni($val);
$seloptions[$val] = $val; } } $expoptions = explode("\n", $options); if(is_array($expoptions)) { foreach($expoptions as $key => $val) { $val = trim($val); $val = str_replace("\n", "\\n", $val); $sel = ""; if($val == $seloptions[$val]) { $sel = " selected=\"selected\"";	$seloptions[$val] = $val; } } $expoptions = explode("\n", $options); if(is_array($expoptions)) { foreach($expoptions as $key => $val) { $val = trim($val); $val = str_replace("\n", "\\n", $val); $sel = ""; if(isset($seloptions[$val]) && $val == $seloptions[$val]) { $sel = " selected=\"selected\"";
} eval("\$select .= \"".$templates->get("usercp_profile_profilefields_select_option")."\";");	} eval("\$select .= \"".$templates->get("usercp_profile_profilefields_select_option")."\";");
Zeile 600	Zeile 556
} } elseif($type == "select")	} } elseif($type == "select")
{	{
$expoptions = explode("\n", $options); if(is_array($expoptions)) {	$expoptions = explode("\n", $options); if(is_array($expoptions)) {
Zeile 626	Zeile 582
} elseif($type == "radio") {	} elseif($type == "radio") {
	$userfield = htmlspecialchars_uni($userfield);
$expoptions = explode("\n", $options); if(is_array($expoptions)) {	$expoptions = explode("\n", $options); if(is_array($expoptions)) {
Zeile 633	Zeile 590
{ $checked = ""; if($val == $userfield)	{ $checked = ""; if($val == $userfield)
{ $checked = " checked=\"checked\"";	{ $checked = " checked=\"checked\"";
} eval("\$code .= \"".$templates->get("usercp_profile_profilefields_radio")."\";");	} eval("\$code .= \"".$templates->get("usercp_profile_profilefields_radio")."\";");
Zeile 643	Zeile 600
} elseif($type == "checkbox") {	} elseif($type == "checkbox") {
	$userfield = htmlspecialchars_uni($userfield);
if($errors) { $useropts = $userfield; } else	if($errors) { $useropts = $userfield; } else
{	{
$useropts = explode("\n", $userfield); } if(is_array($useropts))	$useropts = explode("\n", $userfield); } if(is_array($useropts))
Zeile 664	Zeile 622
foreach($expoptions as $key => $val) { $checked = "";	foreach($expoptions as $key => $val) { $checked = "";
if($val == $seloptions[$val])	if(isset($seloptions[$val]) && $val == $seloptions[$val])
{ $checked = " checked=\"checked\""; }	{ $checked = " checked=\"checked\""; }
Zeile 688	Zeile 646
} eval("\$code = \"".$templates->get("usercp_profile_profilefields_text")."\";");	} eval("\$code = \"".$templates->get("usercp_profile_profilefields_text")."\";");
}	}
if($profilefield['required'] == 1) { eval("\$requiredfields .= \"".$templates->get("usercp_profile_customfield")."\";");	if($profilefield['required'] == 1) { eval("\$requiredfields .= \"".$templates->get("usercp_profile_customfield")."\";");
Zeile 705	Zeile 663
$options = ""; $expoptions = ""; $useropts = "";	$options = ""; $expoptions = ""; $useropts = "";
$seloptions = "";	$seloptions = array();
} } if($customfields)	} } if($customfields)
Zeile 724	Zeile 682
{ if($title['posts'] <= $mybb->user['postnum']) {	{ if($title['posts'] <= $mybb->user['postnum']) {
$defaulttitle = $title['title'];	$defaulttitle = htmlspecialchars_uni($title['title']);
break; }	break; }
} } else { $defaulttitle = $mybb->usergroup['usertitle']; }	} } else { $defaulttitle = htmlspecialchars_uni($mybb->usergroup['usertitle']); }
$newtitle = ''; if(trim($user['usertitle']) == '') {	$newtitle = ''; if(trim($user['usertitle']) == '') {
Zeile 747	Zeile 705
$user['usertitle'] = $mybb->user['usertitle']; } }	$user['usertitle'] = $mybb->user['usertitle']; } }

$user['usertitle'] = htmlspecialchars_uni($user['usertitle']); $currentcustom = $reverttitle = '';	$user['usertitle'] = htmlspecialchars_uni($user['usertitle']); $currentcustom = $reverttitle = '';
Zeile 760	Zeile 718
eval("\$reverttitle = \"".$templates->get("usercp_profile_customtitle_reverttitle")."\";"); } }	eval("\$reverttitle = \"".$templates->get("usercp_profile_customtitle_reverttitle")."\";"); } }

eval("\$customtitle = \"".$templates->get("usercp_profile_customtitle")."\";"); } else { $customtitle = "";	eval("\$customtitle = \"".$templates->get("usercp_profile_customtitle")."\";"); } else { $customtitle = "";
}	}
if($mybb->usergroup['canchangewebsite'] == 1) { eval("\$website = \"".$templates->get("usercp_profile_website")."\";");	if($mybb->usergroup['canchangewebsite'] == 1) { eval("\$website = \"".$templates->get("usercp_profile_website")."\";");
}	}
$plugins->run_hooks("usercp_profile_end"); eval("\$editprofile = \"".$templates->get("usercp_profile")."\";"); output_page($editprofile); }	$plugins->run_hooks("usercp_profile_end"); eval("\$editprofile = \"".$templates->get("usercp_profile")."\";"); output_page($editprofile); }

if($mybb->input['action'] == "do_options" && $mybb->request_method == "post") { // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));	if($mybb->input['action'] == "do_options" && $mybb->request_method == "post") { // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));

$plugins->run_hooks("usercp_do_options_start"); // Set up user handler.	$plugins->run_hooks("usercp_do_options_start"); // Set up user handler.
Zeile 792	Zeile 750
$user = array( "uid" => $mybb->user['uid'],	$user = array( "uid" => $mybb->user['uid'],
"style" => $mybb->get_input('style', 1), "dateformat" => $mybb->get_input('dateformat', 1), "timeformat" => $mybb->get_input('timeformat', 1),	"style" => $mybb->get_input('style', MyBB::INPUT_INT), "dateformat" => $mybb->get_input('dateformat', MyBB::INPUT_INT), "timeformat" => $mybb->get_input('timeformat', MyBB::INPUT_INT),
"timezone" => $db->escape_string($mybb->get_input('timezoneoffset')),	"timezone" => $db->escape_string($mybb->get_input('timezoneoffset')),
"language" => $mybb->get_input('language') );	"language" => $mybb->get_input('language'), 'usergroup' => $mybb->user['usergroup'], 'additionalgroups' => $mybb->user['additionalgroups'] );
$user['options'] = array(	$user['options'] = array(
"allownotices" => $mybb->get_input('allownotices', 1), "hideemail" => $mybb->get_input('hideemail', 1), "subscriptionmethod" => $mybb->get_input('subscriptionmethod', 1), "invisible" => $mybb->get_input('invisible', 1), "dstcorrection" => $mybb->get_input('dstcorrection', 1),	"allownotices" => $mybb->get_input('allownotices', MyBB::INPUT_INT), "hideemail" => $mybb->get_input('hideemail', MyBB::INPUT_INT), "subscriptionmethod" => $mybb->get_input('subscriptionmethod', MyBB::INPUT_INT), "invisible" => $mybb->get_input('invisible', MyBB::INPUT_INT), "dstcorrection" => $mybb->get_input('dstcorrection', MyBB::INPUT_INT),
"threadmode" => $mybb->get_input('threadmode'),	"threadmode" => $mybb->get_input('threadmode'),
"showimages" => $mybb->get_input('showimages', 1), "showvideos" => $mybb->get_input('showvideos', 1), "showsigs" => $mybb->get_input('showsigs', 1), "showavatars" => $mybb->get_input('showavatars', 1), "showquickreply" => $mybb->get_input('showquickreply', 1), "receivepms" => $mybb->get_input('receivepms', 1), "pmnotice" => $mybb->get_input('pmnotice', 1), "receivefrombuddy" => $mybb->get_input('receivefrombuddy', 1), "daysprune" => $mybb->get_input('daysprune', 1), "showcodebuttons" => $mybb->get_input('showcodebuttons', 1), "sourceeditor" => $mybb->get_input('sourceeditor', 1), "pmnotify" => $mybb->get_input('pmnotify', 1), "buddyrequestspm" => $mybb->get_input('buddyrequestspm', 1), "buddyrequestsauto" => $mybb->get_input('buddyrequestsauto', 1), "showredirect" => $mybb->get_input('showredirect', 1), "classicpostbit" => $mybb->get_input('classicpostbit', 1)	"showimages" => $mybb->get_input('showimages', MyBB::INPUT_INT), "showvideos" => $mybb->get_input('showvideos', MyBB::INPUT_INT), "showsigs" => $mybb->get_input('showsigs', MyBB::INPUT_INT), "showavatars" => $mybb->get_input('showavatars', MyBB::INPUT_INT), "showquickreply" => $mybb->get_input('showquickreply', MyBB::INPUT_INT), "receivepms" => $mybb->get_input('receivepms', MyBB::INPUT_INT), "pmnotice" => $mybb->get_input('pmnotice', MyBB::INPUT_INT), "receivefrombuddy" => $mybb->get_input('receivefrombuddy', MyBB::INPUT_INT), "daysprune" => $mybb->get_input('daysprune', MyBB::INPUT_INT), "showcodebuttons" => $mybb->get_input('showcodebuttons', MyBB::INPUT_INT), "sourceeditor" => $mybb->get_input('sourceeditor', MyBB::INPUT_INT), "pmnotify" => $mybb->get_input('pmnotify', MyBB::INPUT_INT), "buddyrequestspm" => $mybb->get_input('buddyrequestspm', MyBB::INPUT_INT), "buddyrequestsauto" => $mybb->get_input('buddyrequestsauto', MyBB::INPUT_INT), "showredirect" => $mybb->get_input('showredirect', MyBB::INPUT_INT), "classicpostbit" => $mybb->get_input('classicpostbit', MyBB::INPUT_INT)
); if($mybb->settings['usertppoptions']) {	); if($mybb->settings['usertppoptions']) {
$user['options']['tpp'] = $mybb->get_input('tpp', 1);	$user['options']['tpp'] = $mybb->get_input('tpp', MyBB::INPUT_INT);
} if($mybb->settings['userpppoptions'])	} if($mybb->settings['userpppoptions'])
{ $user['options']['ppp'] = $mybb->get_input('ppp', 1);	{ $user['options']['ppp'] = $mybb->get_input('ppp', MyBB::INPUT_INT);
} $userhandler->set_data($user);	} $userhandler->set_data($user);

if(!$userhandler->validate_user()) {	if(!$userhandler->validate_user()) {
Zeile 919	Zeile 878
{ $no_subscribe_selected = "selected=\"selected\""; }	{ $no_subscribe_selected = "selected=\"selected\""; }
else if(isset($user['subscriptionmethod']) && $user['subscriptionmethod'] == 2)	elseif(isset($user['subscriptionmethod']) && $user['subscriptionmethod'] == 2)
{ $instant_email_subscribe_selected = "selected=\"selected\""; }	{ $instant_email_subscribe_selected = "selected=\"selected\""; }
else if(isset($user['subscriptionmethod']) && $user['subscriptionmethod'] == 3)	elseif(isset($user['subscriptionmethod']) && $user['subscriptionmethod'] == 3)
{ $instant_pm_subscribe_selected = "selected=\"selected\""; }	{ $instant_pm_subscribe_selected = "selected=\"selected\""; }
Zeile 942	Zeile 901
} if(isset($user['showvideos']) && $user['showvideos'] == 1)	} if(isset($user['showvideos']) && $user['showvideos'] == 1)
{	{
$showvideoscheck = "checked=\"checked\""; } else	$showvideoscheck = "checked=\"checked\""; } else
Zeile 1009	Zeile 968
{ $dst_auto_selected = "selected=\"selected\""; }	{ $dst_auto_selected = "selected=\"selected\""; }
else if(isset($user['dstcorrection']) && $user['dstcorrection'] == 1)	elseif(isset($user['dstcorrection']) && $user['dstcorrection'] == 1)
{ $dst_enabled_selected = "selected=\"selected\""; }	{ $dst_enabled_selected = "selected=\"selected\""; }
Zeile 1053	Zeile 1012
{ $pmnotifycheck = ''; }	{ $pmnotifycheck = ''; }

if(isset($user['buddyrequestspm']) && $user['buddyrequestspm'] != 0) { $buddyrequestspmcheck = "checked=\"checked\"";	if(isset($user['buddyrequestspm']) && $user['buddyrequestspm'] != 0) { $buddyrequestspmcheck = "checked=\"checked\"";
Zeile 1118	Zeile 1077
if($mybb->settings['allowbuddyonly'] == 1) { eval("\$pms_from_buddys = \"".$templates->get("usercp_options_pms_from_buddys")."\";");	if($mybb->settings['allowbuddyonly'] == 1) { eval("\$pms_from_buddys = \"".$templates->get("usercp_options_pms_from_buddys")."\";");
	} $pms = ''; if($mybb->settings['enablepms'] != 0 && $mybb->usergroup['canusepms'] == 1) { eval("\$pms = \"".$templates->get("usercp_options_pms")."\";"); } $quick_reply = ''; if($mybb->settings['quickreply'] == 1) { eval("\$quick_reply = \"".$templates->get("usercp_options_quick_reply")."\";");
} $threadview = array('linear' => '', 'threaded' => '');	} $threadview = array('linear' => '', 'threaded' => '');
Zeile 1209	Zeile 1180
else { // Set up user handler.	else { // Set up user handler.
require_once "inc/datahandlers/user.php";	require_once MYBB_ROOT."inc/datahandlers/user.php";
$userhandler = new UserDataHandler("update"); $user = array( "uid" => $mybb->user['uid'], "email" => $mybb->get_input('email'), "email2" => $mybb->get_input('email2')	$userhandler = new UserDataHandler("update"); $user = array( "uid" => $mybb->user['uid'], "email" => $mybb->get_input('email'), "email2" => $mybb->get_input('email2')
); $userhandler->set_data($user); if(!$userhandler->validate_user()) { $errors = $userhandler->get_friendly_errors(); } else { if($mybb->user['usergroup'] != "5" && $mybb->usergroup['cancp'] != 1 && $mybb->settings['regtype'] != "verify")	); $userhandler->set_data($user); if(!$userhandler->validate_user()) { $errors = $userhandler->get_friendly_errors(); } else { $activation = false; // Checking for pending activations for non-activated accounts if($mybb->user['usergroup'] == 5 && ($mybb->settings['regtype'] == "verify" \|\| $mybb->settings['regtype'] == "both")) { $query = $db->simple_select("awaitingactivation", "*", "uid='".$mybb->user['uid']."' AND (type='r' OR type='b')"); $activation = $db->fetch_array($query); } if($activation) { $userhandler->update_user(); $db->delete_query("awaitingactivation", "uid='".$mybb->user['uid']."'"); // Send new activation mail for non-activated accounts $activationcode = random_str(); $activationarray = array( "uid" => $mybb->user['uid'], "dateline" => TIME_NOW, "code" => $activationcode, "type" => $activation['type'] ); $db->insert_query("awaitingactivation", $activationarray); $emailsubject = $lang->sprintf($lang->emailsubject_activateaccount, $mybb->settings['bbname']); switch($mybb->settings['username_method']) { case 0: $emailmessage = $lang->sprintf($lang->email_activateaccount, $mybb->user['username'], $mybb->settings['bbname'], $mybb->settings['bburl'], $mybb->user['uid'], $activationcode); break; case 1: $emailmessage = $lang->sprintf($lang->email_activateaccount1, $mybb->user['username'], $mybb->settings['bbname'], $mybb->settings['bburl'], $mybb->user['uid'], $activationcode); break; case 2: $emailmessage = $lang->sprintf($lang->email_activateaccount2, $mybb->user['username'], $mybb->settings['bbname'], $mybb->settings['bburl'], $mybb->user['uid'], $activationcode); break; default: $emailmessage = $lang->sprintf($lang->email_activateaccount, $mybb->user['username'], $mybb->settings['bbname'], $mybb->settings['bburl'], $mybb->user['uid'], $activationcode); break; } my_mail($mybb->user['email'], $emailsubject, $emailmessage); $plugins->run_hooks("usercp_do_email_changed"); redirect("usercp.php?action=email", $lang->redirect_emailupdated); } elseif($mybb->usergroup['cancp'] != 1 && ($mybb->settings['regtype'] == "verify" \|\| $mybb->settings['regtype'] == "both"))
{ $uid = $mybb->user['uid']; $username = $mybb->user['username'];	{ $uid = $mybb->user['uid']; $username = $mybb->user['username'];
Zeile 1246	Zeile 1260
$db->insert_query("awaitingactivation", $newactivation); $mail_message = $lang->sprintf($lang->email_changeemail, $mybb->user['username'], $mybb->settings['bbname'], $mybb->user['email'], $mybb->get_input('email'), $mybb->settings['bburl'], $activationcode, $mybb->user['username'], $mybb->user['uid']);	$db->insert_query("awaitingactivation", $newactivation); $mail_message = $lang->sprintf($lang->email_changeemail, $mybb->user['username'], $mybb->settings['bbname'], $mybb->user['email'], $mybb->get_input('email'), $mybb->settings['bburl'], $activationcode, $mybb->user['username'], $mybb->user['uid']);

$lang->emailsubject_changeemail = $lang->sprintf($lang->emailsubject_changeemail, $mybb->settings['bbname']); my_mail($mybb->get_input('email'), $lang->emailsubject_changeemail, $mail_message); $plugins->run_hooks("usercp_do_email_verify"); error($lang->redirect_changeemail_activation);	$lang->emailsubject_changeemail = $lang->sprintf($lang->emailsubject_changeemail, $mybb->settings['bbname']); my_mail($mybb->get_input('email'), $lang->emailsubject_changeemail, $mail_message); $plugins->run_hooks("usercp_do_email_verify"); error($lang->redirect_changeemail_activation);
}	}
else { $userhandler->update_user();	else { $userhandler->update_user();
Zeile 1265	Zeile 1279
} } if(count($errors) > 0)	} } if(count($errors) > 0)
{	{
$mybb->input['action'] = "email"; $errors = inline_error($errors); }	$mybb->input['action'] = "email"; $errors = inline_error($errors); }
Zeile 1278	Zeile 1292
{ $email = htmlspecialchars_uni($mybb->get_input('email')); $email2 = htmlspecialchars_uni($mybb->get_input('email2'));	{ $email = htmlspecialchars_uni($mybb->get_input('email')); $email2 = htmlspecialchars_uni($mybb->get_input('email2'));
}	}
else { $email = $email2 = '';	else { $email = $email2 = '';
} $plugins->run_hooks("usercp_email");	} $plugins->run_hooks("usercp_email");
eval("\$changemail = \"".$templates->get("usercp_email")."\";"); output_page($changemail); }	eval("\$changemail = \"".$templates->get("usercp_email")."\";"); output_page($changemail); }
Zeile 1305	Zeile 1319
else { // Set up user handler.	else { // Set up user handler.
require_once "inc/datahandlers/user.php";	require_once MYBB_ROOT."inc/datahandlers/user.php";
$userhandler = new UserDataHandler("update"); $user = array(	$userhandler = new UserDataHandler("update"); $user = array(
Zeile 1323	Zeile 1337
else { $userhandler->update_user();	else { $userhandler->update_user();
my_setcookie("mybbuser", $mybb->user['uid']."_".$userhandler->data['loginkey']);	my_setcookie("mybbuser", $mybb->user['uid']."_".$userhandler->data['loginkey'], null, true, "lax");
// Notify the user by email that their password has been changed $mail_message = $lang->sprintf($lang->email_changepassword, $mybb->user['username'], $mybb->user['email'], $mybb->settings['bbname'], $mybb->settings['bburl']);	// Notify the user by email that their password has been changed $mail_message = $lang->sprintf($lang->email_changepassword, $mybb->user['username'], $mybb->user['email'], $mybb->settings['bbname'], $mybb->settings['bburl']);
Zeile 1332	Zeile 1346
$plugins->run_hooks("usercp_do_password_end"); redirect("usercp.php?action=password", $lang->redirect_passwordupdated);	$plugins->run_hooks("usercp_do_password_end"); redirect("usercp.php?action=password", $lang->redirect_passwordupdated);
} }	} }
if(count($errors) > 0) { $mybb->input['action'] = "password"; $errors = inline_error($errors);	if(count($errors) > 0) { $mybb->input['action'] = "password"; $errors = inline_error($errors);
} }	} }
if($mybb->input['action'] == "password") {	if($mybb->input['action'] == "password") {
Zeile 1358	Zeile 1372
if($mybb->usergroup['canchangename'] != 1) { error_no_permission();	if($mybb->usergroup['canchangename'] != 1) { error_no_permission();
}	}
if(validate_password_from_uid($mybb->user['uid'], $mybb->get_input('password')) == false) { $errors[] = $lang->error_invalidpassword;	if(validate_password_from_uid($mybb->user['uid'], $mybb->get_input('password')) == false) { $errors[] = $lang->error_invalidpassword;
Zeile 1367	Zeile 1381
else { // Set up user handler.	else { // Set up user handler.
require_once "inc/datahandlers/user.php";	require_once MYBB_ROOT."inc/datahandlers/user.php";
$userhandler = new UserDataHandler("update"); $user = array(	$userhandler = new UserDataHandler("update"); $user = array(
Zeile 1386	Zeile 1400
$userhandler->update_user(); $plugins->run_hooks("usercp_do_changename_end"); redirect("usercp.php?action=changename", $lang->redirect_namechanged);	$userhandler->update_user(); $plugins->run_hooks("usercp_do_changename_end"); redirect("usercp.php?action=changename", $lang->redirect_namechanged);

} } if(count($errors) > 0)	} } if(count($errors) > 0)
Zeile 1423	Zeile 1437
} // Clean input - only accept integers thanks!	} // Clean input - only accept integers thanks!
$mybb->input['check'] = array_map('intval', $mybb->get_input('check', 2));	$mybb->input['check'] = array_map('intval', $mybb->get_input('check', MyBB::INPUT_ARRAY));
$tids = implode(",", $mybb->input['check']); // Deleting these subscriptions?	$tids = implode(",", $mybb->input['check']); // Deleting these subscriptions?
Zeile 1438	Zeile 1452
{ $new_notification = 0; }	{ $new_notification = 0; }
else if($mybb->get_input('do') == "email_notification") { $new_notification = 1; } else if($mybb->get_input('do') == "pm_notification")	elseif($mybb->get_input('do') == "email_notification") { $new_notification = 1; } elseif($mybb->get_input('do') == "pm_notification")
{ $new_notification = 2; }	{ $new_notification = 2; }
Zeile 1482	Zeile 1496
} $perpage = $mybb->settings['threadsperpage'];	} $perpage = $mybb->settings['threadsperpage'];
$page = $mybb->get_input('page', 1);	$page = $mybb->get_input('page', MyBB::INPUT_INT);
if($page > 0) { $start = ($page-1) * $perpage;	if($page > 0) { $start = ($page-1) * $perpage;
Zeile 1529	Zeile 1543
// Hmm, you don't have permission to view this thread - unsubscribe! $del_subscriptions[] = $subscription['sid']; }	// Hmm, you don't have permission to view this thread - unsubscribe! $del_subscriptions[] = $subscription['sid']; }
else if($subscription['tid'])	elseif($subscription['tid'])
{ $subscriptions[$subscription['tid']] = $subscription; }	{ $subscriptions[$subscription['tid']] = $subscription; }
Zeile 1547	Zeile 1561
$threadcount = $threadcount - count($del_subscriptions); if($threadcount < 0)	$threadcount = $threadcount - count($del_subscriptions); if($threadcount < 0)
{	{
$threadcount = 0; } }	$threadcount = 0; } }
Zeile 1555	Zeile 1569
if(!empty($subscriptions)) { $tids = implode(",", array_keys($subscriptions));	if(!empty($subscriptions)) { $tids = implode(",", array_keys($subscriptions));
	$readforums = array(); // Build a forum cache. $query = $db->query(" SELECT f.fid, fr.dateline AS lastread FROM ".TABLE_PREFIX."forums f LEFT JOIN ".TABLE_PREFIX."forumsread fr ON (fr.fid=f.fid AND fr.uid='{$mybb->user['uid']}') WHERE f.active != 0 ORDER BY pid, disporder ");

if($mybb->user['uid'] == 0) { // Build a forum cache. $query = $db->query(" SELECT fid FROM ".TABLE_PREFIX."forums WHERE active != 0 ORDER BY pid, disporder "); $forumsread = my_unserialize($mybb->cookies['mybb']['forumread']); } else	while($forum = $db->fetch_array($query))
{	{
// Build a forum cache. $query = $db->query(" SELECT f.fid, fr.dateline AS lastread FROM ".TABLE_PREFIX."forums f LEFT JOIN ".TABLE_PREFIX."forumsread fr ON (fr.fid=f.fid AND fr.uid='{$mybb->user['uid']}') WHERE f.active != 0 ORDER BY pid, disporder "); } while($forum = $db->fetch_array($query)) { if($mybb->user['uid'] == 0) { if($forumsread[$forum['fid']]) { $forum['lastread'] = $forumsread[$forum['fid']]; } }
$readforums[$forum['fid']] = $forum['lastread']; } // Check participation by the current user in any of these threads - for 'dot' folder icons if($mybb->settings['dotfolders'] != 0)	$readforums[$forum['fid']] = $forum['lastread']; } // Check participation by the current user in any of these threads - for 'dot' folder icons if($mybb->settings['dotfolders'] != 0)
{	{
$query = $db->simple_select("posts", "tid,uid", "uid='{$mybb->user['uid']}' AND tid IN ({$tids})"); while($post = $db->fetch_array($query)) { $subscriptions[$post['tid']]['doticon'] = 1;	$query = $db->simple_select("posts", "tid,uid", "uid='{$mybb->user['uid']}' AND tid IN ({$tids})"); while($post = $db->fetch_array($query)) { $subscriptions[$post['tid']]['doticon'] = 1;
} }	} }
// Read threads if($mybb->settings['threadreadcut'] > 0) {	// Read threads if($mybb->settings['threadreadcut'] > 0) {
Zeile 1613	Zeile 1607
$icon_cache = $cache->read("posticons"); $threadprefixes = build_prefixes();	$icon_cache = $cache->read("posticons"); $threadprefixes = build_prefixes();

$threads = '';	$threads = '';

// Now we can build our subscription list foreach($subscriptions as $thread) { $bgcolor = alt_trow();	// Now we can build our subscription list foreach($subscriptions as $thread) { $bgcolor = alt_trow();
$folder = '';	$folder = '';
$prefix = ''; $thread['threadprefix'] = '';	$prefix = ''; $thread['threadprefix'] = '';
Zeile 1647	Zeile 1641
$icon['path'] = htmlspecialchars_uni($icon['path']); $icon['name'] = htmlspecialchars_uni($icon['name']); eval("\$icon = \"".$templates->get("usercp_subscriptions_thread_icon")."\";");	$icon['path'] = htmlspecialchars_uni($icon['path']); $icon['name'] = htmlspecialchars_uni($icon['name']); eval("\$icon = \"".$templates->get("usercp_subscriptions_thread_icon")."\";");
}	}
else { $icon = " ";	else { $icon = " ";
Zeile 1661	Zeile 1655
{ $folder = "dot_"; $folder_label .= $lang->icon_dot;	{ $folder = "dot_"; $folder_label .= $lang->icon_dot;
}	}
$gotounread = ''; $isnew = 0; $donenew = 0; $lastread = 0;	$gotounread = ''; $isnew = 0; $donenew = 0; $lastread = 0;
if($mybb->settings['threadreadcut'] > 0 && $mybb->user['uid']) {	if($mybb->settings['threadreadcut'] > 0) {
$forum_read = $readforums[$thread['fid']]; $read_cutoff = TIME_NOW-$mybb->settings['threadreadcut']6060*24; if($forum_read == 0 \|\| $forum_read < $read_cutoff) { $forum_read = $read_cutoff;	$forum_read = $readforums[$thread['fid']]; $read_cutoff = TIME_NOW-$mybb->settings['threadreadcut']6060*24; if($forum_read == 0 \|\| $forum_read < $read_cutoff) { $forum_read = $read_cutoff;
} } else { $forum_read = $forumsread[$thread['fid']];	}
} $cutoff = 0;	} $cutoff = 0;
Zeile 1698	Zeile 1688
else { $lastread = 1;	else { $lastread = 1;
} }	} }
if(!$lastread) { $readcookie = $threadread = my_get_array_cookie("threadread", $thread['tid']); if($readcookie > $forum_read) { $lastread = $readcookie;	if(!$lastread) { $readcookie = $threadread = my_get_array_cookie("threadread", $thread['tid']); if($readcookie > $forum_read) { $lastread = $readcookie;
}	}
else { $lastread = $forum_read;	else { $lastread = $forum_read;
Zeile 1727	Zeile 1717
{ $folder_label .= $lang->icon_no_new; $new_class = "subject_old";	{ $folder_label .= $lang->icon_no_new; $new_class = "subject_old";
}	}
if($thread['replies'] >= $mybb->settings['hottopic'] \|\| $thread['views'] >= $mybb->settings['hottopicviews'])	if($thread['replies'] >= $mybb->settings['hottopic'] \|\| $thread['views'] >= $mybb->settings['hottopicviews'])
{	{
$folder .= "hot"; $folder_label .= $lang->icon_hot; }	$folder .= "hot"; $folder_label .= $lang->icon_hot; }
if($thread['closed'] == 1) { $folder .= "lock"; $folder_label .= $lang->icon_lock; }	if($thread['closed'] == 1) { $folder .= "close"; $folder_label .= $lang->icon_close; }
$folder .= "folder"; if($thread['visible'] == 0)	$folder .= "folder"; if($thread['visible'] == 0)
Zeile 1750	Zeile 1740
// Build last post info $lastpostdate = my_date('relative', $thread['lastpost']);	// Build last post info $lastpostdate = my_date('relative', $thread['lastpost']);
$lastposter = $thread['lastposter'];	if(!$lastposteruid && !$thread['lastposter']) { $lastposter = htmlspecialchars_uni($lang->guest); } else { $lastposter = htmlspecialchars_uni($thread['lastposter']); }
$lastposteruid = $thread['lastposteruid']; // Don't link to guest's profiles (they have no profile).	$lastposteruid = $thread['lastposteruid']; // Don't link to guest's profiles (they have no profile).
Zeile 1784	Zeile 1781
// Provide remove options eval("\$remove_options = \"".$templates->get("usercp_subscriptions_remove")."\";");	// Provide remove options eval("\$remove_options = \"".$templates->get("usercp_subscriptions_remove")."\";");
}	}
else { $remove_options = '';	else { $remove_options = '';
Zeile 1798	Zeile 1795
} if($mybb->input['action'] == "forumsubscriptions")	} if($mybb->input['action'] == "forumsubscriptions")
{	{
$plugins->run_hooks("usercp_forumsubscriptions_start");	$plugins->run_hooks("usercp_forumsubscriptions_start");
if($mybb->user['uid'] == 0) { // Build a forum cache. $query = $db->query(" SELECT fid FROM ".TABLE_PREFIX."forums WHERE active != 0 ORDER BY pid, disporder "); if(isset($mybb->cookies['mybb']['forumread'])) { $forumsread = my_unserialize($mybb->cookies['mybb']['forumread']); } } else { // Build a forum cache. $query = $db->query(" SELECT f.fid, fr.dateline AS lastread FROM ".TABLE_PREFIX."forums f LEFT JOIN ".TABLE_PREFIX."forumsread fr ON (fr.fid=f.fid AND fr.uid='{$mybb->user['uid']}') WHERE f.active != 0 ORDER BY pid, disporder "); }	// Build a forum cache. $query = $db->query(" SELECT f.fid, fr.dateline AS lastread FROM ".TABLE_PREFIX."forums f LEFT JOIN ".TABLE_PREFIX."forumsread fr ON (fr.fid=f.fid AND fr.uid='{$mybb->user['uid']}') WHERE f.active != 0 ORDER BY pid, disporder ");
$readforums = array(); while($forum = $db->fetch_array($query)) {	$readforums = array(); while($forum = $db->fetch_array($query)) {
if($mybb->user['uid'] == 0) { if($forumsread[$forum['fid']]) { $forum['lastread'] = $forumsread[$forum['fid']]; } }
$readforums[$forum['fid']] = $forum['lastread']; }	$readforums[$forum['fid']] = $forum['lastread']; }
Zeile 1878	Zeile 1850
$threads = my_number_format($forum['threads']); }	$threads = my_number_format($forum['threads']); }
if($forum['lastpost'] == 0 \|\| $forum['lastposter'] == "")	if($forum['lastpost'] == 0)
{ eval("\$lastpost = \"".$templates->get("forumbit_depth2_forum_lastpost_never")."\";"); }	{ eval("\$lastpost = \"".$templates->get("forumbit_depth2_forum_lastpost_never")."\";"); }
Zeile 1892	Zeile 1864
$forum['lastpostsubject'] = $parser->parse_badwords($forum['lastpostsubject']); $lastpost_date = my_date('relative', $forum['lastpost']); $lastposttid = $forum['lastposttid'];	$forum['lastpostsubject'] = $parser->parse_badwords($forum['lastpostsubject']); $lastpost_date = my_date('relative', $forum['lastpost']); $lastposttid = $forum['lastposttid'];
$lastposter = $forum['lastposter']; $lastpost_profilelink = build_profile_link($lastposter, $forum['lastposteruid']);	if(!$forum['lastposteruid'] && !$forum['lastposter']) { $lastposter = htmlspecialchars_uni($lang->guest); } else { $lastposter = htmlspecialchars_uni($forum['lastposter']); } if($forum['lastposteruid'] == 0) { $lastpost_profilelink = $lastposter; } else { $lastpost_profilelink = build_profile_link($lastposter, $forum['lastposteruid']); }
$full_lastpost_subject = $lastpost_subject = htmlspecialchars_uni($forum['lastpostsubject']); if(my_strlen($lastpost_subject) > 25) {	$full_lastpost_subject = $lastpost_subject = htmlspecialchars_uni($forum['lastpostsubject']); if(my_strlen($lastpost_subject) > 25) {
Zeile 1906	Zeile 1892
if($mybb->settings['showdescriptions'] == 0) { $forum['description'] = "";	if($mybb->settings['showdescriptions'] == 0) { $forum['description'] = "";
}	}
eval("\$forums .= \"".$templates->get("usercp_forumsubscriptions_forum")."\";");	eval("\$forums .= \"".$templates->get("usercp_forumsubscriptions_forum")."\";");
}	}
if(!$forums) { eval("\$forums = \"".$templates->get("usercp_forumsubscriptions_none")."\";");	if(!$forums) { eval("\$forums = \"".$templates->get("usercp_forumsubscriptions_none")."\";");
Zeile 1920	Zeile 1906
eval("\$forumsubscriptions = \"".$templates->get("usercp_forumsubscriptions")."\";"); output_page($forumsubscriptions);	eval("\$forumsubscriptions = \"".$templates->get("usercp_forumsubscriptions")."\";"); output_page($forumsubscriptions);
	} if($mybb->input['action'] == "do_addsubscription" && $mybb->get_input('type') != "forum") { // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key')); $thread = get_thread($mybb->get_input('tid')); if(!$thread \|\| $thread['visible'] == -1) { error($lang->error_invalidthread); } // Is the currently logged in user a moderator of this forum? $ismod = is_moderator($thread['fid']); // Make sure we are looking at a real thread here. if(($thread['visible'] != 1 && $ismod == false) \|\| ($thread['visible'] > 1 && $ismod == true)) { error($lang->error_invalidthread); } $forumpermissions = forum_permissions($thread['fid']); if($forumpermissions['canview'] == 0 \|\| $forumpermissions['canviewthreads'] == 0 \|\| (isset($forumpermissions['canonlyviewownthreads']) && $forumpermissions['canonlyviewownthreads'] != 0 && $thread['uid'] != $mybb->user['uid'])) { error_no_permission(); } // check if the forum requires a password to view. If so, we need to show a form to the user check_forum_password($thread['fid']); // Naming of the hook retained for backward compatibility while dropping usercp2.php $plugins->run_hooks("usercp2_do_addsubscription"); add_subscribed_thread($thread['tid'], $mybb->get_input('notification', MyBB::INPUT_INT)); if($mybb->get_input('referrer')) { $url = htmlspecialchars_uni($mybb->get_input('referrer')); } else { $url = get_thread_link($thread['tid']); } redirect($url, $lang->redirect_subscriptionadded); } if($mybb->input['action'] == "addsubscription") { // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key')); if($mybb->get_input('type') == "forum") { $forum = get_forum($mybb->get_input('fid', MyBB::INPUT_INT)); if(!$forum) { error($lang->error_invalidforum); } $forumpermissions = forum_permissions($forum['fid']); if($forumpermissions['canview'] == 0 \|\| $forumpermissions['canviewthreads'] == 0) { error_no_permission(); } // check if the forum requires a password to view. If so, we need to show a form to the user check_forum_password($forum['fid']); // Naming of the hook retained for backward compatibility while dropping usercp2.php $plugins->run_hooks("usercp2_addsubscription_forum"); add_subscribed_forum($forum['fid']); if($server_http_referer && $mybb->request_method != 'post') { $url = $server_http_referer; } else { $url = "index.php"; } redirect($url, $lang->redirect_forumsubscriptionadded); } else { $thread = get_thread($mybb->get_input('tid', MyBB::INPUT_INT)); if(!$thread \|\| $thread['visible'] == -1) { error($lang->error_invalidthread); } // Is the currently logged in user a moderator of this forum? $ismod = is_moderator($thread['fid']); // Make sure we are looking at a real thread here. if(($thread['visible'] != 1 && $ismod == false) \|\| ($thread['visible'] > 1 && $ismod == true)) { error($lang->error_invalidthread); } add_breadcrumb($lang->nav_subthreads, "usercp.php?action=subscriptions"); add_breadcrumb($lang->nav_addsubscription); $forumpermissions = forum_permissions($thread['fid']); if($forumpermissions['canview'] == 0 \|\| $forumpermissions['canviewthreads'] == 0 \|\| (isset($forumpermissions['canonlyviewownthreads']) && $forumpermissions['canonlyviewownthreads'] != 0 && $thread['uid'] != $mybb->user['uid'])) { error_no_permission(); } // check if the forum requires a password to view. If so, we need to show a form to the user check_forum_password($thread['fid']); $referrer = ''; if($server_http_referer) { $referrer = $server_http_referer; } require_once MYBB_ROOT."inc/class_parser.php"; $parser = new postParser; $thread['subject'] = $parser->parse_badwords($thread['subject']); $thread['subject'] = htmlspecialchars_uni($thread['subject']); $lang->subscribe_to_thread = $lang->sprintf($lang->subscribe_to_thread, $thread['subject']); $notification_none_checked = $notification_email_checked = $notification_pm_checked = ''; if($mybb->user['subscriptionmethod'] == 1 \|\| $mybb->user['subscriptionmethod'] == 0) { $notification_none_checked = "checked=\"checked\""; } elseif($mybb->user['subscriptionmethod'] == 2) { $notification_email_checked = "checked=\"checked\""; } elseif($mybb->user['subscriptionmethod'] == 3) { $notification_pm_checked = "checked=\"checked\""; } // Naming of the hook retained for backward compatibility while dropping usercp2.php $plugins->run_hooks("usercp2_addsubscription_thread"); eval("\$add_subscription = \"".$templates->get("usercp_addsubscription_thread")."\";"); output_page($add_subscription); exit; } } if($mybb->input['action'] == "removesubscription") { // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key')); if($mybb->get_input('type') == "forum") { $forum = get_forum($mybb->get_input('fid', MyBB::INPUT_INT)); if(!$forum) { error($lang->error_invalidforum); } // check if the forum requires a password to view. If so, we need to show a form to the user check_forum_password($forum['fid']); // Naming of the hook retained for backward compatibility while dropping usercp2.php $plugins->run_hooks("usercp2_removesubscription_forum"); remove_subscribed_forum($forum['fid']); if($server_http_referer && $mybb->request_method != 'post') { $url = $server_http_referer; } else { $url = "usercp.php?action=forumsubscriptions"; } redirect($url, $lang->redirect_forumsubscriptionremoved); } else { $thread = get_thread($mybb->get_input('tid', MyBB::INPUT_INT)); if(!$thread) { error($lang->error_invalidthread); } // Is the currently logged in user a moderator of this forum? $ismod = is_moderator($thread['fid']); // Make sure we are looking at a real thread here. if(($thread['visible'] != 1 && $ismod == false) \|\| ($thread['visible'] > 1 && $ismod == true)) { error($lang->error_invalidthread); } // check if the forum requires a password to view. If so, we need to show a form to the user check_forum_password($thread['fid']); // Naming of the hook retained for backward compatibility while dropping usercp2.php $plugins->run_hooks("usercp2_removesubscription_thread"); remove_subscribed_thread($thread['tid']); if($server_http_referer && $mybb->request_method != 'post') { $url = $server_http_referer; } else { $url = "usercp.php?action=subscriptions"; } redirect($url, $lang->redirect_subscriptionremoved); } } if($mybb->input['action'] == "removesubscriptions") { // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key')); if($mybb->get_input('type') == "forum") { // Naming of the hook retained for backward compatibility while dropping usercp2.php $plugins->run_hooks("usercp2_removesubscriptions_forum"); $db->delete_query("forumsubscriptions", "uid='".$mybb->user['uid']."'"); if($server_http_referer) { $url = $server_http_referer; } else { $url = "usercp.php?action=forumsubscriptions"; } redirect($url, $lang->redirect_forumsubscriptionsremoved); } else { // Naming of the hook retained for backward compatibility while dropping usercp2.php $plugins->run_hooks("usercp2_removesubscriptions_thread"); $db->delete_query("threadsubscriptions", "uid='".$mybb->user['uid']."'"); if($server_http_referer) { $url = $server_http_referer; } else { $url = "usercp.php?action=subscriptions"; } redirect($url, $lang->redirect_subscriptionsremoved); }
} if($mybb->input['action'] == "do_editsig" && $mybb->request_method == "post")	} if($mybb->input['action'] == "do_editsig" && $mybb->request_method == "post")
Zeile 1993	Zeile 2228
// Usergroup has no permission to use this facility error_no_permission(); }	// Usergroup has no permission to use this facility error_no_permission(); }
else if($mybb->usergroup['canusesig'] == 1 && $mybb->usergroup['canusesigxposts'] > 0 && $mybb->user['postnum'] < $mybb->usergroup['canusesigxposts'])	elseif($mybb->usergroup['canusesig'] == 1 && $mybb->usergroup['canusesigxposts'] > 0 && $mybb->user['postnum'] < $mybb->usergroup['canusesigxposts'])
{ // Usergroup can use this facility, but only after x posts error($lang->sprintf($lang->sig_suspended_posts, $mybb->usergroup['canusesigxposts']));	{ // Usergroup can use this facility, but only after x posts error($lang->sprintf($lang->sig_suspended_posts, $mybb->usergroup['canusesigxposts']));
Zeile 2011	Zeile 2246
"filter_badwords" => 1 );	"filter_badwords" => 1 );
if($mybb->user['showimages'] != 1 && $mybb->user['uid'] != 0)	if($mybb->user['showimages'] != 1)
{ $sig_parser['allow_imgcode'] = 0; }	{ $sig_parser['allow_imgcode'] = 0; }
Zeile 2041	Zeile 2276
$sigsmilies = $lang->off; } if($mybb->settings['sigmycode'] == 1)	$sigsmilies = $lang->off; } if($mybb->settings['sigmycode'] == 1)
{	{
$sigmycode = $lang->on;	$sigmycode = $lang->on;
}	}
else { $sigmycode = $lang->off; } if($mybb->settings['sightml'] == 1)	else { $sigmycode = $lang->off; } if($mybb->settings['sightml'] == 1)
{	{
$sightml = $lang->on; } else	$sightml = $lang->on; } else
Zeile 2063	Zeile 2298
else { $sigimgcode = $lang->off;	else { $sigimgcode = $lang->off;
}	}
$sig = htmlspecialchars_uni($sig); $lang->edit_sig_note2 = $lang->sprintf($lang->edit_sig_note2, $sigsmilies, $sigmycode, $sigimgcode, $sightml, $mybb->settings['siglength']);	$sig = htmlspecialchars_uni($sig); $lang->edit_sig_note2 = $lang->sprintf($lang->edit_sig_note2, $sigsmilies, $sigmycode, $sigimgcode, $sightml, $mybb->settings['siglength']);
Zeile 2099	Zeile 2334
); $db->update_query("users", $updated_avatar, "uid='".$mybb->user['uid']."'"); remove_avatars($mybb->user['uid']);	); $db->update_query("users", $updated_avatar, "uid='".$mybb->user['uid']."'"); remove_avatars($mybb->user['uid']);
}	}
elseif($_FILES['avatarupload']['name']) // upload avatar { if($mybb->usergroup['canuploadavatars'] == 0)	elseif($_FILES['avatarupload']['name']) // upload avatar { if($mybb->usergroup['canuploadavatars'] == 0)
Zeile 2125	Zeile 2360
$db->update_query("users", $updated_avatar, "uid='".$mybb->user['uid']."'"); } }	$db->update_query("users", $updated_avatar, "uid='".$mybb->user['uid']."'"); } }
else // remote avatar	elseif($mybb->settings['allowremoteavatars']) // remote avatar
{ $mybb->input['avatarurl'] = trim($mybb->get_input('avatarurl')); if(validate_email_format($mybb->input['avatarurl']) != false)	{ $mybb->input['avatarurl'] = trim($mybb->get_input('avatarurl')); if(validate_email_format($mybb->input['avatarurl']) != false)
Zeile 2143	Zeile 2378
} // Because Gravatars are square, hijack the width	} // Because Gravatars are square, hijack the width
list($maxwidth, $maxheight) = explode("x", my_strtolower($mybb->settings['maxavatardims']));	list($maxwidth, $maxheight) = preg_split('/[\|x]/', my_strtolower($mybb->settings['maxavatardims']));
$maxheight = (int)$maxwidth; // Rating?	$maxheight = (int)$maxwidth; // Rating?
Zeile 2158	Zeile 2393
$s = "?s={$maxheight}&r={$rating}&d=mm"; $updated_avatar = array(	$s = "?s={$maxheight}&r={$rating}&d=mm"; $updated_avatar = array(
"avatar" => "http://www.gravatar.com/avatar/{$email}{$s}.jpg",	"avatar" => "https://www.gravatar.com/avatar/{$email}{$s}",
"avatardimensions" => "{$maxheight}\|{$maxheight}", "avatartype" => "gravatar" );	"avatardimensions" => "{$maxheight}\|{$maxheight}", "avatartype" => "gravatar" );
Zeile 2201	Zeile 2436
{ if($width && $height && $mybb->settings['maxavatardims'] != "") {	{ if($width && $height && $mybb->settings['maxavatardims'] != "") {
list($maxwidth, $maxheight) = explode("x", my_strtolower($mybb->settings['maxavatardims']));	list($maxwidth, $maxheight) = preg_split('/[\|x]/', my_strtolower($mybb->settings['maxavatardims']));
if(($maxwidth && $width > $maxwidth) \|\| ($maxheight && $height > $maxheight)) { $lang->error_avatartoobig = $lang->sprintf($lang->error_avatartoobig, $maxwidth, $maxheight);	if(($maxwidth && $width > $maxwidth) \|\| ($maxheight && $height > $maxheight)) { $lang->error_avatartoobig = $lang->sprintf($lang->error_avatartoobig, $maxwidth, $maxheight);
Zeile 2225	Zeile 2460
remove_avatars($mybb->user['uid']); } }	remove_avatars($mybb->user['uid']); } }
	} else // remote avatar, but remote avatars are not allowed { $avatar_error = $lang->error_remote_avatar_not_allowed;
} if(empty($avatar_error))	} if(empty($avatar_error))
Zeile 2238	Zeile 2477
$avatar_error = inline_error($avatar_error); } }	$avatar_error = inline_error($avatar_error); } }

if($mybb->input['action'] == "avatar") { $plugins->run_hooks("usercp_avatar_start"); $avatarmsg = $avatarurl = '';	if($mybb->input['action'] == "avatar") { $plugins->run_hooks("usercp_avatar_start"); $avatarmsg = $avatarurl = '';

if($mybb->user['avatartype'] == "upload" \|\| stristr($mybb->user['avatar'], $mybb->settings['avataruploadpath'])) { $avatarmsg = "<br /><strong>".$lang->already_uploaded_avatar."</strong>"; }	if($mybb->user['avatartype'] == "upload" \|\| stristr($mybb->user['avatar'], $mybb->settings['avataruploadpath'])) { $avatarmsg = "<br /><strong>".$lang->already_uploaded_avatar."</strong>"; }
elseif($mybb->user['avatartype'] == "remote" \|\| my_strpos(my_strtolower($mybb->user['avatar']), "http://") !== false)	elseif($mybb->user['avatartype'] == "remote" \|\| my_validate_url($mybb->user['avatar']))
{ $avatarmsg = "<br /><strong>".$lang->using_remote_avatar."</strong>"; $avatarurl = htmlspecialchars_uni($mybb->user['avatar']); }	{ $avatarmsg = "<br /><strong>".$lang->using_remote_avatar."</strong>"; $avatarurl = htmlspecialchars_uni($mybb->user['avatar']); }
$useravatar = format_avatar(htmlspecialchars_uni($mybb->user['avatar']), $mybb->user['avatardimensions'], '100x100');	$useravatar = format_avatar($mybb->user['avatar'], $mybb->user['avatardimensions'], '100x100');
eval("\$currentavatar = \"".$templates->get("usercp_avatar_current")."\";"); if($mybb->settings['maxavatardims'] != "")	eval("\$currentavatar = \"".$templates->get("usercp_avatar_current")."\";"); if($mybb->settings['maxavatardims'] != "")
{ list($maxwidth, $maxheight) = explode("x", my_strtolower($mybb->settings['maxavatardims']));	{ list($maxwidth, $maxheight) = preg_split('/[\|x]/', my_strtolower($mybb->settings['maxavatardims']));
$lang->avatar_note .= "<br />".$lang->sprintf($lang->avatar_note_dimensions, $maxwidth, $maxheight); }	$lang->avatar_note .= "<br />".$lang->sprintf($lang->avatar_note_dimensions, $maxwidth, $maxheight); }
Zeile 2269	Zeile 2508
$maxsize = get_friendly_size($mybb->settings['avatarsize']*1024); $lang->avatar_note .= "<br />".$lang->sprintf($lang->avatar_note_size, $maxsize); }	$maxsize = get_friendly_size($mybb->settings['avatarsize']*1024); $lang->avatar_note .= "<br />".$lang->sprintf($lang->avatar_note_size, $maxsize); }
	$plugins->run_hooks("usercp_avatar_intermediate");
$auto_resize = ''; if($mybb->settings['avatarresizing'] == "auto")	$auto_resize = ''; if($mybb->settings['avatarresizing'] == "auto")
{	{
eval("\$auto_resize = \"".$templates->get("usercp_avatar_auto_resize_auto")."\";");	eval("\$auto_resize = \"".$templates->get("usercp_avatar_auto_resize_auto")."\";");
} else if($mybb->settings['avatarresizing'] == "user")	} elseif($mybb->settings['avatarresizing'] == "user")
{ eval("\$auto_resize = \"".$templates->get("usercp_avatar_auto_resize_user")."\";");	{ eval("\$auto_resize = \"".$templates->get("usercp_avatar_auto_resize_user")."\";");
}	}
$avatarupload = ''; if($mybb->usergroup['canuploadavatars'] == 1)	$avatarupload = ''; if($mybb->usergroup['canuploadavatars'] == 1)
{	{
eval("\$avatarupload = \"".$templates->get("usercp_avatar_upload")."\";");	eval("\$avatarupload = \"".$templates->get("usercp_avatar_upload")."\";");
	} $avatar_remote = ''; if($mybb->settings['allowremoteavatars'] == 1) { eval("\$avatar_remote = \"".$templates->get("usercp_avatar_remote")."\";");
} $removeavatar = '';	} $removeavatar = '';
Zeile 2309	Zeile 2556
verify_post_check($mybb->get_input('my_post_key')); // Validate request	verify_post_check($mybb->get_input('my_post_key')); // Validate request
$query = $db->simple_select('buddyrequests', '*', 'id='.(int)$mybb->input['id'].' AND touid='.(int)$mybb->user['uid']);	$query = $db->simple_select('buddyrequests', '*', 'id='.$mybb->get_input('id', MyBB::INPUT_INT).' AND touid='.(int)$mybb->user['uid']);
$request = $db->fetch_array($query); if(empty($request)) { error($lang->invalid_request); }	$request = $db->fetch_array($query); if(empty($request)) { error($lang->invalid_request); }

$plugins->run_hooks("usercp_acceptrequest_start");	$plugins->run_hooks("usercp_acceptrequest_start");

$user = get_user($request['uid']); if(!empty($user)) {	$user = get_user($request['uid']); if(!empty($user)) {
Zeile 2330	Zeile 2577
{ $user['buddylist'] = array(); }	{ $user['buddylist'] = array(); }

$user['buddylist'][] = (int)$mybb->user['uid'];	$user['buddylist'][] = (int)$mybb->user['uid'];

// Now we have the new list, so throw it all back together $new_list = implode(",", $user['buddylist']);	// Now we have the new list, so throw it all back together $new_list = implode(",", $user['buddylist']);
// And clean it up a little to ensure there is no possibility of bad values $new_list = preg_replace("#,{2,}#", ",", $new_list); $new_list = preg_replace("#[^0-9,]#", "", $new_list); if(my_substr($new_list, 0, 1) == ",") { $new_list = my_substr($new_list, 1); }	// And clean it up a little to ensure there is no possibility of bad values $new_list = preg_replace("#,{2,}#", ",", $new_list); $new_list = preg_replace("#[^0-9,]#", "", $new_list); if(my_substr($new_list, 0, 1) == ",") { $new_list = my_substr($new_list, 1); }
if(my_substr($new_list, -1) == ",") { $new_list = my_substr($new_list, 0, my_strlen($new_list)-2); }	if(my_substr($new_list, -1) == ",") { $new_list = my_substr($new_list, 0, my_strlen($new_list)-2); }

$user['buddylist'] = $db->escape_string($new_list);	$user['buddylist'] = $db->escape_string($new_list);

$db->update_query("users", array('buddylist' => $user['buddylist']), "uid='".(int)$user['uid']."'");	$db->update_query("users", array('buddylist' => $user['buddylist']), "uid='".(int)$user['uid']."'");

// We want to add the user to our buddy list if($mybb->user['buddylist'] != '') {	// We want to add the user to our buddy list if($mybb->user['buddylist'] != '') {
Zeile 2363	Zeile 2610
{ $mybb->user['buddylist'] = array(); }	{ $mybb->user['buddylist'] = array(); }

$mybb->user['buddylist'][] = (int)$request['uid'];	$mybb->user['buddylist'][] = (int)$request['uid'];

// Now we have the new list, so throw it all back together $new_list = implode(",", $mybb->user['buddylist']);	// Now we have the new list, so throw it all back together $new_list = implode(",", $mybb->user['buddylist']);
Zeile 2381	Zeile 2628
{ $new_list = my_substr($new_list, 0, my_strlen($new_list)-2); }	{ $new_list = my_substr($new_list, 0, my_strlen($new_list)-2); }

$mybb->user['buddylist'] = $db->escape_string($new_list);	$mybb->user['buddylist'] = $db->escape_string($new_list);

$db->update_query("users", array('buddylist' => $mybb->user['buddylist']), "uid='".(int)$mybb->user['uid']."'");	$db->update_query("users", array('buddylist' => $mybb->user['buddylist']), "uid='".(int)$mybb->user['uid']."'");

$pm = array( 'subject' => 'buddyrequest_accepted_request', 'message' => 'buddyrequest_accepted_request_message',	$pm = array( 'subject' => 'buddyrequest_accepted_request', 'message' => 'buddyrequest_accepted_request_message',
Zeile 2393	Zeile 2640
'language' => $user['language'], 'language_file' => 'usercp' );	'language' => $user['language'], 'language_file' => 'usercp' );

send_pm($pm, $mybb->user['uid'], true);	send_pm($pm, $mybb->user['uid'], true);

$db->delete_query('buddyrequests', 'id='.(int)$request['id']); } else { error($lang->user_doesnt_exist); }	$db->delete_query('buddyrequests', 'id='.(int)$request['id']); } else { error($lang->user_doesnt_exist); }

$plugins->run_hooks("usercp_acceptrequest_end");	$plugins->run_hooks("usercp_acceptrequest_end");

redirect("usercp.php?action=editlists", $lang->buddyrequest_accepted); }	redirect("usercp.php?action=editlists", $lang->buddyrequest_accepted); }

elseif($mybb->input['action'] == "declinerequest")	elseif($mybb->input['action'] == "declinerequest")
{ // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key')); // Validate request $query = $db->simple_select('buddyrequests', '*', 'id='.(int)$mybb->input['id'].' AND touid='.(int)$mybb->user['uid']); $request = $db->fetch_array($query); if(empty($request)) { error($lang->invalid_request); }	{ // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key')); // Validate request $query = $db->simple_select('buddyrequests', '*', 'id='.$mybb->get_input('id', MyBB::INPUT_INT).' AND touid='.(int)$mybb->user['uid']); $request = $db->fetch_array($query); if(empty($request)) { error($lang->invalid_request); }
$plugins->run_hooks("usercp_declinerequest_start");	$plugins->run_hooks("usercp_declinerequest_start");

$user = get_user($request['uid']); if(!empty($user))	$user = get_user($request['uid']); if(!empty($user))
{	{
$db->delete_query('buddyrequests', 'id='.(int)$request['id']); } else	$db->delete_query('buddyrequests', 'id='.(int)$request['id']); } else
{	{
error($lang->user_doesnt_exist); } $plugins->run_hooks("usercp_declinerequest_end");	error($lang->user_doesnt_exist); } $plugins->run_hooks("usercp_declinerequest_end");

redirect("usercp.php?action=editlists", $lang->buddyrequest_declined); }	redirect("usercp.php?action=editlists", $lang->buddyrequest_declined); }

elseif($mybb->input['action'] == "cancelrequest") { // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));	elseif($mybb->input['action'] == "cancelrequest") { // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));

// Validate request	// Validate request
$query = $db->simple_select('buddyrequests', '*', 'id='.(int)$mybb->input['id'].' AND uid='.(int)$mybb->user['uid']);	$query = $db->simple_select('buddyrequests', '*', 'id='.$mybb->get_input('id', MyBB::INPUT_INT).' AND uid='.(int)$mybb->user['uid']);
$request = $db->fetch_array($query); if(empty($request)) { error($lang->invalid_request); }	$request = $db->fetch_array($query); if(empty($request)) { error($lang->invalid_request); }

$plugins->run_hooks("usercp_cancelrequest_start");	$plugins->run_hooks("usercp_cancelrequest_start");

$db->delete_query('buddyrequests', 'id='.(int)$request['id']);	$db->delete_query('buddyrequests', 'id='.(int)$request['id']);

$plugins->run_hooks("usercp_cancelrequest_end");	$plugins->run_hooks("usercp_cancelrequest_end");

redirect("usercp.php?action=editlists", $lang->buddyrequest_cancelled); }	redirect("usercp.php?action=editlists", $lang->buddyrequest_cancelled); }
Zeile 2522	Zeile 2771
} $users[$key] = $db->escape_string($username); }	} $users[$key] = $db->escape_string($username); }

// Get the requests we have sent that are still pending $query = $db->simple_select('buddyrequests', 'touid', 'uid='.(int)$mybb->user['uid']); $requests = array();	// Get the requests we have sent that are still pending $query = $db->simple_select('buddyrequests', 'touid', 'uid='.(int)$mybb->user['uid']); $requests = array();
while($req = $db->fetch_array($query))	while($req = $db->fetch_array($query))
{ $requests[$req['touid']] = true; }	{ $requests[$req['touid']] = true; }

// Get the requests we have received that are still pending $query = $db->simple_select('buddyrequests', 'uid', 'touid='.(int)$mybb->user['uid']); $requests_rec = array();	// Get the requests we have received that are still pending $query = $db->simple_select('buddyrequests', 'uid', 'touid='.(int)$mybb->user['uid']); $requests_rec = array();
Zeile 2538	Zeile 2787
{ $requests_rec[$req['uid']] = true; }	{ $requests_rec[$req['uid']] = true; }
$sent = false;	$sent = false;
// Fetch out new users if(count($users) > 0) {	// Fetch out new users if(count($users) > 0) {
$query = $db->simple_select("users", "uid,buddyrequestsauto,buddyrequestspm,language", "LOWER(username) IN ('".my_strtolower(implode("','", $users))."')");	switch($db->type) { case 'mysql': case 'mysqli': $field = 'username'; break; default: $field = 'LOWER(username)'; break; } $query = $db->simple_select("users", "uid,buddyrequestsauto,buddyrequestspm,language", "{$field} IN ('".my_strtolower(implode("','", $users))."')");
while($user = $db->fetch_array($query)) { ++$found_users;	while($user = $db->fetch_array($query)) { ++$found_users;
Zeile 2569	Zeile 2828
} $error_message = $lang->$string;	} $error_message = $lang->$string;
array_pop($users); // To maintain a proper count when we call count($users)	array_pop($users); // To maintain a proper count when we call count($users)
continue; }	continue; }
Zeile 2583	Zeile 2842
{ $error_message = $lang->users_already_sent_request_alt; }	{ $error_message = $lang->users_already_sent_request_alt; }

array_pop($users); // To maintain a proper count when we call count($users) continue; }	array_pop($users); // To maintain a proper count when we call count($users) continue; }

if(isset($requests_rec[$user['uid']])) { if($mybb->get_input('manage') != "ignored")	if(isset($requests_rec[$user['uid']])) { if($mybb->get_input('manage') != "ignored")
Zeile 2598	Zeile 2857
{ $error_message = $lang->users_already_rec_request_alt; }	{ $error_message = $lang->users_already_rec_request_alt; }

array_pop($users); // To maintain a proper count when we call count($users) continue;	array_pop($users); // To maintain a proper count when we call count($users) continue;
}	}
// Do we have auto approval set to On? if($user['buddyrequestsauto'] == 1 && $mybb->get_input('manage') != "ignored") { $existing_users[] = $user['uid'];	// Do we have auto approval set to On? if($user['buddyrequestsauto'] == 1 && $mybb->get_input('manage') != "ignored") { $existing_users[] = $user['uid'];

$pm = array( 'subject' => 'buddyrequest_new_buddy', 'message' => 'buddyrequest_new_buddy_message',	$pm = array( 'subject' => 'buddyrequest_new_buddy', 'message' => 'buddyrequest_new_buddy_message',
'touid' => $user['uid'], 'receivepms' => (int)$user['buddyrequestspm'], 'language' => $user['language'], 'language_file' => 'usercp' );	'touid' => $user['uid'], 'receivepms' => (int)$user['buddyrequestspm'], 'language' => $user['language'], 'language_file' => 'usercp' );
send_pm($pm); } elseif($user['buddyrequestsauto'] != 1 && $mybb->get_input('manage') != "ignored") { // Send request $id = $db->insert_query('buddyrequests', array('uid' => (int)$mybb->user['uid'], 'touid' => (int)$user['uid'], 'date' => TIME_NOW));	send_pm($pm); } elseif($user['buddyrequestsauto'] != 1 && $mybb->get_input('manage') != "ignored") { // Send request $id = $db->insert_query('buddyrequests', array('uid' => (int)$mybb->user['uid'], 'touid' => (int)$user['uid'], 'date' => TIME_NOW));

$pm = array( 'subject' => 'buddyrequest_received', 'message' => 'buddyrequest_received_message',	$pm = array( 'subject' => 'buddyrequest_received', 'message' => 'buddyrequest_received_message',
Zeile 2632	Zeile 2891
'language' => $user['language'], 'language_file' => 'usercp' );	'language' => $user['language'], 'language_file' => 'usercp' );

send_pm($pm);	send_pm($pm);

$sent = true; } elseif($mybb->get_input('manage') == "ignored")	$sent = true; } elseif($mybb->get_input('manage') == "ignored")
Zeile 2681	Zeile 2940
if(count($existing_users) == 0) { $message = "";	if(count($existing_users) == 0) { $message = "";

if($sent === true)	if($sent === true)
{	{
$message = $lang->buddyrequests_sent_success; } } } // Removing a user from this list	$message = $lang->buddyrequests_sent_success; } } } // Removing a user from this list
else if($mybb->get_input('delete', 1))	elseif($mybb->get_input('delete', MyBB::INPUT_INT))
{ // Check if user exists on the list	{ // Check if user exists on the list
$key = array_search($mybb->get_input('delete', 1), $existing_users);	$key = array_search($mybb->get_input('delete', MyBB::INPUT_INT), $existing_users);
if($key !== false) { unset($existing_users[$key]);	if($key !== false) { unset($existing_users[$key]);
$user = get_user($mybb->get_input('delete', 1));	$user = get_user($mybb->get_input('delete', MyBB::INPUT_INT));
if(!empty($user)) { // We want to remove us from this user's buddy list if($user['buddylist'] != '') { $user['buddylist'] = explode(',', $user['buddylist']);	if(!empty($user)) { // We want to remove us from this user's buddy list if($user['buddylist'] != '') { $user['buddylist'] = explode(',', $user['buddylist']);
} else	} else
{ $user['buddylist'] = array(); }	{ $user['buddylist'] = array(); }
$key = array_search((int)$mybb->input['delete'], $user['buddylist']);	$key = array_search($mybb->get_input('delete', MyBB::INPUT_INT), $user['buddylist']);
unset($user['buddylist'][$key]);	unset($user['buddylist'][$key]);

// Now we have the new list, so throw it all back together $new_list = implode(",", $user['buddylist']);	// Now we have the new list, so throw it all back together $new_list = implode(",", $user['buddylist']);

// And clean it up a little to ensure there is no possibility of bad values $new_list = preg_replace("#,{2,}#", ",", $new_list); $new_list = preg_replace("#[^0-9,]#", "", $new_list); if(my_substr($new_list, 0, 1) == ",")	// And clean it up a little to ensure there is no possibility of bad values $new_list = preg_replace("#,{2,}#", ",", $new_list); $new_list = preg_replace("#[^0-9,]#", "", $new_list); if(my_substr($new_list, 0, 1) == ",")
{	{
$new_list = my_substr($new_list, 1);	$new_list = my_substr($new_list, 1);
}	}
if(my_substr($new_list, -1) == ",") { $new_list = my_substr($new_list, 0, my_strlen($new_list)-2); }	if(my_substr($new_list, -1) == ",") { $new_list = my_substr($new_list, 0, my_strlen($new_list)-2); }

$user['buddylist'] = $db->escape_string($new_list);	$user['buddylist'] = $db->escape_string($new_list);

$db->update_query("users", array('buddylist' => $user['buddylist']), "uid='".(int)$user['uid']."'"); }	$db->update_query("users", array('buddylist' => $user['buddylist']), "uid='".(int)$user['uid']."'"); }

if($mybb->get_input('manage') == "ignored") { $message = $lang->removed_from_ignore_list;	if($mybb->get_input('manage') == "ignored") { $message = $lang->removed_from_ignore_list;
Zeile 2742	Zeile 3001
{ $message = $lang->removed_from_buddy_list; }	{ $message = $lang->removed_from_buddy_list; }
	$user['username'] = htmlspecialchars_uni($user['username']);
$message = $lang->sprintf($message, $user['username']); } }	$message = $lang->sprintf($message, $user['username']); } }
Zeile 2760	Zeile 3020
if(my_substr($new_list, -1) == ",") { $new_list = my_substr($new_list, 0, my_strlen($new_list)-2);	if(my_substr($new_list, -1) == ",") { $new_list = my_substr($new_list, 0, my_strlen($new_list)-2);
}	}
// And update $user = array(); if($mybb->get_input('manage') == "ignored") { $user['ignorelist'] = $db->escape_string($new_list); $mybb->user['ignorelist'] = $user['ignorelist'];	// And update $user = array(); if($mybb->get_input('manage') == "ignored") { $user['ignorelist'] = $db->escape_string($new_list); $mybb->user['ignorelist'] = $user['ignorelist'];
}	}
else { $user['buddylist'] = $db->escape_string($new_list); $mybb->user['buddylist'] = $user['buddylist']; }	else { $user['buddylist'] = $db->escape_string($new_list); $mybb->user['buddylist'] = $user['buddylist']; }

$db->update_query("users", $user, "uid='".$mybb->user['uid']."'"); $plugins->run_hooks("usercp_do_editlists_end");	$db->update_query("users", $user, "uid='".$mybb->user['uid']."'"); $plugins->run_hooks("usercp_do_editlists_end");
Zeile 2787	Zeile 3047
$list = "ignore"; } else	$list = "ignore"; } else
{	{
$list = "buddy"; } $message_js = ''; if($message)	$list = "buddy"; } $message_js = ''; if($message)
{ $message_js = "$.jGrowl('{$message}');";	{ $message_js = "$.jGrowl('{$message}', {theme:'jgrowl_success'});";
} if($error_message) {	} if($error_message) {
$message_js .= " $.jGrowl('{$error_message}');";	$message_js .= " $.jGrowl('{$error_message}', {theme:'jgrowl_error'});";
}	}
if($mybb->get_input('delete', 1))	if($mybb->get_input('delete', MyBB::INPUT_INT))
{ header("Content-type: text/javascript");	{ header("Content-type: text/javascript");
echo "$(\"#".$mybb->get_input('manage')."_".$mybb->get_input('delete', 1)."\").remove();\n";	echo "$(\"#".$mybb->get_input('manage')."_".$mybb->get_input('delete', MyBB::INPUT_INT)."\").remove();\n";
if($new_list == "") { echo "\$(\"#".$mybb->get_input('manage')."_count\").html(\"0\");\n"; if($mybb->get_input('manage') == "ignored")	if($new_list == "") { echo "\$(\"#".$mybb->get_input('manage')."_count\").html(\"0\");\n"; if($mybb->get_input('manage') == "ignored")
{	{
echo "\$(\"#ignore_list\").html(\"<li>{$lang->ignore_list_empty}</li>\");\n"; } else { echo "\$(\"#buddy_list\").html(\"<li>{$lang->buddy_list_empty}</li>\");\n";	echo "\$(\"#ignore_list\").html(\"<li>{$lang->ignore_list_empty}</li>\");\n"; } else { echo "\$(\"#buddy_list\").html(\"<li>{$lang->buddy_list_empty}</li>\");\n";
}	}
} else {	} else {
Zeile 2852	Zeile 3112
$query = $db->simple_select("users", "*", "uid IN ({$mybb->user['buddylist']})", array("order_by" => "username")); while($user = $db->fetch_array($query)) {	$query = $db->simple_select("users", "*", "uid IN ({$mybb->user['buddylist']})", array("order_by" => "username")); while($user = $db->fetch_array($query)) {
	$user['username'] = htmlspecialchars_uni($user['username']);
$profile_link = build_profile_link(format_name($user['username'], $user['usergroup'], $user['displaygroup']), $user['uid']); if($user['lastactive'] > $timecut && ($user['invisible'] == 0 \|\| $mybb->usergroup['canviewwolinvis'] == 1) && $user['lastvisit'] != $user['lastactive']) {	$profile_link = build_profile_link(format_name($user['username'], $user['usergroup'], $user['displaygroup']), $user['uid']); if($user['lastactive'] > $timecut && ($user['invisible'] == 0 \|\| $mybb->usergroup['canviewwolinvis'] == 1) && $user['lastvisit'] != $user['lastactive']) {
Zeile 2881	Zeile 3142
$query = $db->simple_select("users", "*", "uid IN ({$mybb->user['ignorelist']})", array("order_by" => "username")); while($user = $db->fetch_array($query)) {	$query = $db->simple_select("users", "*", "uid IN ({$mybb->user['ignorelist']})", array("order_by" => "username")); while($user = $db->fetch_array($query)) {
	$user['username'] = htmlspecialchars_uni($user['username']);
$profile_link = build_profile_link(format_name($user['username'], $user['usergroup'], $user['displaygroup']), $user['uid']); if($user['lastactive'] > $timecut && ($user['invisible'] == 0 \|\| $mybb->usergroup['canviewwolinvis'] == 1) && $user['lastvisit'] != $user['lastactive']) {	$profile_link = build_profile_link(format_name($user['username'], $user['usergroup'], $user['displaygroup']), $user['uid']); if($user['lastactive'] > $timecut && ($user['invisible'] == 0 \|\| $mybb->usergroup['canviewwolinvis'] == 1) && $user['lastvisit'] != $user['lastactive']) {
Zeile 2916	Zeile 3178
$sent_rows = ''; $query = $db->query(" SELECT r.*, u.username	$sent_rows = ''; $query = $db->query(" SELECT r.*, u.username
FROM `".TABLE_PREFIX."buddyrequests` r LEFT JOIN `".TABLE_PREFIX."users` u ON (u.uid=r.touid) WHERE r.uid=".(int)$mybb->user['uid']." ");	FROM ".TABLE_PREFIX."buddyrequests r LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid=r.touid) WHERE r.uid=".(int)$mybb->user['uid']);
while($request = $db->fetch_array($query)) { $bgcolor = alt_trow(); $request['username'] = build_profile_link(htmlspecialchars_uni($request['username']), (int)$request['touid']);	while($request = $db->fetch_array($query)) { $bgcolor = alt_trow(); $request['username'] = build_profile_link(htmlspecialchars_uni($request['username']), (int)$request['touid']);
$request['date'] = my_date($mybb->settings['dateformat'], $request['date'])." ".my_date($mybb->settings['timeformat'], $request['date']);	$request['date'] = my_date('relative', $request['date']);
eval("\$sent_rows .= \"".$templates->get("usercp_editlists_sent_request", 1, 0)."\";"); }	eval("\$sent_rows .= \"".$templates->get("usercp_editlists_sent_request", 1, 0)."\";"); }

if($sent_rows == '') { eval("\$sent_rows = \"".$templates->get("usercp_editlists_no_requests", 1, 0)."\";"); }	if($sent_rows == '') { eval("\$sent_rows = \"".$templates->get("usercp_editlists_no_requests", 1, 0)."\";"); }

eval("\$sent_requests = \"".$templates->get("usercp_editlists_sent_requests", 1, 0)."\";");	eval("\$sent_requests = \"".$templates->get("usercp_editlists_sent_requests", 1, 0)."\";");

echo $sentrequests; echo $sent_requests."<script type=\"text/javascript\">{$message_js}</script>"; }	echo $sentrequests; echo $sent_requests."<script type=\"text/javascript\">{$message_js}</script>"; }
Zeile 2946	Zeile 3208
} exit; }	} exit; }

$received_rows = '';	$received_rows = '';
$query = $db->query(" SELECT r.*, u.username FROM `".TABLE_PREFIX."buddyrequests` r LEFT JOIN `".TABLE_PREFIX."users` u ON (u.uid=r.uid) WHERE r.touid=".(int)$mybb->user['uid']." "); while($request = $db->fetch_array($query)) { $bgcolor = alt_trow();	$query = $db->query(" SELECT r.*, u.username FROM ".TABLE_PREFIX."buddyrequests r LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid=r.uid) WHERE r.touid=".(int)$mybb->user['uid']); while($request = $db->fetch_array($query)) { $bgcolor = alt_trow();
$request['username'] = build_profile_link(htmlspecialchars_uni($request['username']), (int)$request['uid']);	$request['username'] = build_profile_link(htmlspecialchars_uni($request['username']), (int)$request['uid']);
$request['date'] = my_date($mybb->settings['dateformat'], $request['date'])." ".my_date($mybb->settings['timeformat'], $request['date']);	$request['date'] = my_date('relative', $request['date']);
eval("\$received_rows .= \"".$templates->get("usercp_editlists_received_request")."\";"); }	eval("\$received_rows .= \"".$templates->get("usercp_editlists_received_request")."\";"); }

if($received_rows == '') { eval("\$received_rows = \"".$templates->get("usercp_editlists_no_requests")."\";"); }	if($received_rows == '') { eval("\$received_rows = \"".$templates->get("usercp_editlists_no_requests")."\";"); }

eval("\$received_requests = \"".$templates->get("usercp_editlists_received_requests")."\";");	eval("\$received_requests = \"".$templates->get("usercp_editlists_received_requests")."\";");

$sent_rows = ''; $query = $db->query(" SELECT r.*, u.username	$sent_rows = ''; $query = $db->query(" SELECT r.*, u.username
FROM `".TABLE_PREFIX."buddyrequests` r LEFT JOIN `".TABLE_PREFIX."users` u ON (u.uid=r.touid) WHERE r.uid=".(int)$mybb->user['uid']." ");	FROM ".TABLE_PREFIX."buddyrequests r LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid=r.touid) WHERE r.uid=".(int)$mybb->user['uid']);
while($request = $db->fetch_array($query)) { $bgcolor = alt_trow(); $request['username'] = build_profile_link(htmlspecialchars_uni($request['username']), (int)$request['touid']);	while($request = $db->fetch_array($query)) { $bgcolor = alt_trow(); $request['username'] = build_profile_link(htmlspecialchars_uni($request['username']), (int)$request['touid']);
$request['date'] = my_date($mybb->settings['dateformat'], $request['date'])." ".my_date($mybb->settings['timeformat'], $request['date']);	$request['date'] = my_date('relative', $request['date']);
eval("\$sent_rows .= \"".$templates->get("usercp_editlists_sent_request")."\";");	eval("\$sent_rows .= \"".$templates->get("usercp_editlists_sent_request")."\";");
}	}
if($sent_rows == '') { eval("\$sent_rows = \"".$templates->get("usercp_editlists_no_requests")."\";"); }	if($sent_rows == '') { eval("\$sent_rows = \"".$templates->get("usercp_editlists_no_requests")."\";"); }

eval("\$sent_requests = \"".$templates->get("usercp_editlists_sent_requests")."\";");	eval("\$sent_requests = \"".$templates->get("usercp_editlists_sent_requests")."\";");

$plugins->run_hooks("usercp_editlists_end"); eval("\$listpage = \"".$templates->get("usercp_editlists")."\";");	$plugins->run_hooks("usercp_editlists_end"); eval("\$listpage = \"".$templates->get("usercp_editlists")."\";");
Zeile 3065	Zeile 3327
verify_post_check($mybb->get_input('my_post_key')); $plugins->run_hooks("usercp_do_drafts_start");	verify_post_check($mybb->get_input('my_post_key')); $plugins->run_hooks("usercp_do_drafts_start");
$mybb->input['deletedraft'] = $mybb->get_input('deletedraft', 2);	$mybb->input['deletedraft'] = $mybb->get_input('deletedraft', MyBB::INPUT_ARRAY);
if(empty($mybb->input['deletedraft'])) { error($lang->no_drafts_selected);	if(empty($mybb->input['deletedraft'])) { error($lang->no_drafts_selected);
Zeile 3115	Zeile 3377
$usergroups = $mybb->cache->read('usergroups'); // Changing our display group	$usergroups = $mybb->cache->read('usergroups'); // Changing our display group
if($mybb->get_input('displaygroup', 1))	if($mybb->get_input('displaygroup', MyBB::INPUT_INT))
{ // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));	{ // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));
Zeile 3125	Zeile 3387
error($lang->not_member_of_group); }	error($lang->not_member_of_group); }
$dispgroup = $usergroups[$mybb->get_input('displaygroup', 1)];	$dispgroup = $usergroups[$mybb->get_input('displaygroup', MyBB::INPUT_INT)];
if($dispgroup['candisplaygroup'] != 1) { error($lang->cannot_set_displaygroup); }	if($dispgroup['candisplaygroup'] != 1) { error($lang->cannot_set_displaygroup); }
$db->update_query("users", array('displaygroup' => $mybb->get_input('displaygroup', 1)), "uid='".$mybb->user['uid']."'");	$db->update_query("users", array('displaygroup' => $mybb->get_input('displaygroup', MyBB::INPUT_INT)), "uid='".$mybb->user['uid']."'");
$cache->update_moderators(); $plugins->run_hooks("usercp_usergroups_change_displaygroup"); redirect("usercp.php?action=usergroups", $lang->display_group_changed);	$cache->update_moderators(); $plugins->run_hooks("usercp_usergroups_change_displaygroup"); redirect("usercp.php?action=usergroups", $lang->display_group_changed);
Zeile 3138	Zeile 3400
} // Leaving a group	} // Leaving a group
if($mybb->get_input('leavegroup', 1))	if($mybb->get_input('leavegroup', MyBB::INPUT_INT))
{ // Verify incoming POST request verify_post_check($mybb->input['my_post_key']);	{ // Verify incoming POST request verify_post_check($mybb->input['my_post_key']);
if(my_strpos($ingroups, ",".$mybb->get_input('leavegroup', 1).",") === false)	if(my_strpos($ingroups, ",".$mybb->get_input('leavegroup', MyBB::INPUT_INT).",") === false)
{ error($lang->not_member_of_group); }	{ error($lang->not_member_of_group); }
if($mybb->user['usergroup'] == $mybb->get_input('leavegroup', 1))	if($mybb->user['usergroup'] == $mybb->get_input('leavegroup', MyBB::INPUT_INT))
{ error($lang->cannot_leave_primary_group); }	{ error($lang->cannot_leave_primary_group); }
$usergroup = $usergroups[$mybb->get_input('leavegroup', 1)];	$usergroup = $usergroups[$mybb->get_input('leavegroup', MyBB::INPUT_INT)];
if($usergroup['type'] != 4 && $usergroup['type'] != 3 && $usergroup['type'] != 5) { error($lang->cannot_leave_group); }	if($usergroup['type'] != 4 && $usergroup['type'] != 3 && $usergroup['type'] != 5) { error($lang->cannot_leave_group); }
leave_usergroup($mybb->user['uid'], $mybb->get_input('leavegroup', 1));	leave_usergroup($mybb->user['uid'], $mybb->get_input('leavegroup', MyBB::INPUT_INT));
$plugins->run_hooks("usercp_usergroups_leave_group"); redirect("usercp.php?action=usergroups", $lang->left_group); exit;	$plugins->run_hooks("usercp_usergroups_leave_group"); redirect("usercp.php?action=usergroups", $lang->left_group); exit;
Zeile 3167	Zeile 3429
// List of usergroup leaders $query = $db->query("	// List of usergroup leaders $query = $db->query("
SELECT g.*, u.username, u.displaygroup, u.usergroup	SELECT g.*, u.username, u.displaygroup, u.usergroup, u.email, u.language
FROM ".TABLE_PREFIX."groupleaders g LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid=g.uid) ORDER BY u.username ASC	FROM ".TABLE_PREFIX."groupleaders g LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid=g.uid) ORDER BY u.username ASC
Zeile 3178	Zeile 3440
} // Joining a group	} // Joining a group
if($mybb->get_input('joingroup', 1))	if($mybb->get_input('joingroup', MyBB::INPUT_INT))
{ // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));	{ // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));
$usergroup = $usergroups[$mybb->get_input('joingroup', 1)];	$usergroup = $usergroups[$mybb->get_input('joingroup', MyBB::INPUT_INT)];
if($usergroup['type'] == 5) {	if($usergroup['type'] == 5) {
Zeile 3195	Zeile 3457
error($lang->cannot_join_group); }	error($lang->cannot_join_group); }
if(my_strpos($ingroups, ",".$mybb->get_input('joingroup', 1).",") !== false)	if(my_strpos($ingroups, ",".$mybb->get_input('joingroup', MyBB::INPUT_INT).",") !== false)
{ error($lang->already_member_of_group); }	{ error($lang->already_member_of_group); }
$query = $db->simple_select("joinrequests", "*", "uid='".$mybb->user['uid']."' AND gid='".$mybb->get_input('joingroup', 1)."'");	$query = $db->simple_select("joinrequests", "*", "uid='".$mybb->user['uid']."' AND gid='".$mybb->get_input('joingroup', MyBB::INPUT_INT)."'");
$joinrequest = $db->fetch_array($query);	$joinrequest = $db->fetch_array($query);

if($joinrequest['rid']) { error($lang->already_sent_join_request); }	if($joinrequest['rid']) { error($lang->already_sent_join_request); }

if($mybb->get_input('do') == "joingroup" && $usergroup['type'] == 4) {	if($mybb->get_input('do') == "joingroup" && $usergroup['type'] == 4) {
	$reasonlength = my_strlen($mybb->get_input('reason')); if($reasonlength > 250) // Reason field is varchar(250) in database { error($lang->sprintf($lang->joinreason_too_long, ($reasonlength - 250))); }
$now = TIME_NOW; $joinrequest = array( "uid" => $mybb->user['uid'],	$now = TIME_NOW; $joinrequest = array( "uid" => $mybb->user['uid'],
"gid" => $mybb->get_input('joingroup', 1),	"gid" => $mybb->get_input('joingroup', MyBB::INPUT_INT),
"reason" => $db->escape_string($mybb->get_input('reason')), "dateline" => TIME_NOW ); $db->insert_query("joinrequests", $joinrequest);	"reason" => $db->escape_string($mybb->get_input('reason')), "dateline" => TIME_NOW ); $db->insert_query("joinrequests", $joinrequest);
foreach($groupleaders as $key => $groupleader)	if(array_key_exists($usergroup['gid'], $groupleaders))
{	{
foreach($groupleader as $leader)	foreach($groupleaders[$usergroup['gid']] as $leader)
{	{
$leader_user = get_user($leader['uid']);
// Load language	// Load language
$lang->set_language($leader_user['language']);	$lang->set_language($leader['language']);
$lang->load("messages");	$lang->load("messages");

$subject = $lang->sprintf($lang->emailsubject_newjoinrequest, $mybb->settings['bbname']);	$subject = $lang->sprintf($lang->emailsubject_newjoinrequest, $mybb->settings['bbname']);
$message = $lang->sprintf($lang->email_groupleader_joinrequest, $leader_user['username'], $mybb->user['username'], $usergroups[$leader['gid']]['title'], $mybb->settings['bbname'], $mybb->get_input('reason'), $mybb->settings['bburl'], $leader['gid']); my_mail($leader_user['email'], $subject, $message);	$message = $lang->sprintf($lang->email_groupleader_joinrequest, $leader['username'], $mybb->user['username'], $usergroup['title'], $mybb->settings['bbname'], $mybb->get_input('reason'), $mybb->settings['bburl'], $leader['gid']); my_mail($leader['email'], $subject, $message);
} } // Load language $lang->set_language($mybb->user['language']); $lang->load("messages");	} } // Load language $lang->set_language($mybb->user['language']); $lang->load("messages");

$plugins->run_hooks("usercp_usergroups_join_group_request"); redirect("usercp.php?action=usergroups", $lang->group_join_requestsent); exit; } elseif($usergroup['type'] == 4) {	$plugins->run_hooks("usercp_usergroups_join_group_request"); redirect("usercp.php?action=usergroups", $lang->group_join_requestsent); exit; } elseif($usergroup['type'] == 4) {
$joingroup = $mybb->get_input('joingroup', 1);	$joingroup = $mybb->get_input('joingroup', MyBB::INPUT_INT);
eval("\$joinpage = \"".$templates->get("usercp_usergroups_joingroup")."\";"); output_page($joinpage); exit;	eval("\$joinpage = \"".$templates->get("usercp_usergroups_joingroup")."\";"); output_page($joinpage); exit;
}	}
else {	else {
join_usergroup($mybb->user['uid'], $mybb->get_input('joingroup', 1));	join_usergroup($mybb->user['uid'], $mybb->get_input('joingroup', MyBB::INPUT_INT));
$plugins->run_hooks("usercp_usergroups_join_group"); redirect("usercp.php?action=usergroups", $lang->joined_group); } } // Accepting invitation	$plugins->run_hooks("usercp_usergroups_join_group"); redirect("usercp.php?action=usergroups", $lang->joined_group); } } // Accepting invitation
if($mybb->get_input('acceptinvite', 1))	if($mybb->get_input('acceptinvite', MyBB::INPUT_INT))
{ // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));	{ // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));
$usergroup = $usergroups[$mybb->get_input('acceptinvite', 1)];	$usergroup = $usergroups[$mybb->get_input('acceptinvite', MyBB::INPUT_INT)];

if(my_strpos($ingroups, ",".$mybb->get_input('acceptinvite', 1).",") !== false)	if(my_strpos($ingroups, ",".$mybb->get_input('acceptinvite', MyBB::INPUT_INT).",") !== false)
{ error($lang->already_accepted_invite); }	{ error($lang->already_accepted_invite); }
$query = $db->simple_select("joinrequests", "*", "uid='".$mybb->user['uid']."' AND gid='".$mybb->get_input('acceptinvite', 1)."' AND invite='1'");	$query = $db->simple_select("joinrequests", "*", "uid='".$mybb->user['uid']."' AND gid='".$mybb->get_input('acceptinvite', MyBB::INPUT_INT)."' AND invite='1'");
$joinrequest = $db->fetch_array($query); if($joinrequest['rid']) {	$joinrequest = $db->fetch_array($query); if($joinrequest['rid']) {
join_usergroup($mybb->user['uid'], $mybb->get_input('acceptinvite', 1)); $db->delete_query("joinrequests", "uid='{$mybb->user['uid']}' AND gid='".$mybb->get_input('acceptinvite', 1)."'");	join_usergroup($mybb->user['uid'], $mybb->get_input('acceptinvite', MyBB::INPUT_INT)); $db->delete_query("joinrequests", "uid='{$mybb->user['uid']}' AND gid='".$mybb->get_input('acceptinvite', MyBB::INPUT_INT)."'");
$plugins->run_hooks("usercp_usergroups_accept_invite"); redirect("usercp.php?action=usergroups", $lang->joined_group); }	$plugins->run_hooks("usercp_usergroups_accept_invite"); redirect("usercp.php?action=usergroups", $lang->joined_group); }
Zeile 3311	Zeile 3580
LEFT JOIN ".TABLE_PREFIX."users u ON(((CONCAT(',', u.additionalgroups, ',') LIKE CONCAT('%,', g.gid, ',%')) OR u.usergroup = g.gid)) LEFT JOIN ".TABLE_PREFIX."joinrequests j ON(j.gid=g.gid AND j.uid != 0) WHERE l.uid='".$mybb->user['uid']."'	LEFT JOIN ".TABLE_PREFIX."users u ON(((CONCAT(',', u.additionalgroups, ',') LIKE CONCAT('%,', g.gid, ',%')) OR u.usergroup = g.gid)) LEFT JOIN ".TABLE_PREFIX."joinrequests j ON(j.gid=g.gid AND j.uid != 0) WHERE l.uid='".$mybb->user['uid']."'
GROUP BY l.gid	GROUP BY g.gid, g.title, g.type, l.canmanagerequests, l.canmanagemembers, l.caninvitemembers
"); }	"); }
Zeile 3319	Zeile 3588
{ $memberlistlink = $moderaterequestslink = ''; eval("\$memberlistlink = \"".$templates->get("usercp_usergroups_leader_usergroup_memberlist")."\";");	{ $memberlistlink = $moderaterequestslink = ''; eval("\$memberlistlink = \"".$templates->get("usercp_usergroups_leader_usergroup_memberlist")."\";");
	$usergroup['title'] = htmlspecialchars_uni($usergroup['title']);
if($usergroup['type'] != 4) { $usergroup['joinrequests'] = '--';	if($usergroup['type'] != 4) { $usergroup['joinrequests'] = '--';
Zeile 3340	Zeile 3610
// Fetch the list of groups the member is in // Do the primary group first $usergroup = $usergroups[$mybb->user['usergroup']];	// Fetch the list of groups the member is in // Do the primary group first $usergroup = $usergroups[$mybb->user['usergroup']];
	$usergroup['title'] = htmlspecialchars_uni($usergroup['title']); $usergroup['usertitle'] = htmlspecialchars_uni($usergroup['usertitle']); $usergroup['description'] = htmlspecialchars_uni($usergroup['description']);
eval("\$leavelink = \"".$templates->get("usercp_usergroups_memberof_usergroup_leaveprimary")."\";"); $trow = alt_trow(); if($usergroup['candisplaygroup'] == 1 && $usergroup['gid'] == $mybb->user['displaygroup'])	eval("\$leavelink = \"".$templates->get("usercp_usergroups_memberof_usergroup_leaveprimary")."\";"); $trow = alt_trow(); if($usergroup['candisplaygroup'] == 1 && $usergroup['gid'] == $mybb->user['displaygroup'])
Zeile 3365	Zeile 3638
$showmemberof = true; if(isset($groupleader[$usergroup['gid']]))	$showmemberof = true; if(isset($groupleader[$usergroup['gid']]))
{	{
eval("\$leavelink = \"".$templates->get("usercp_usergroups_memberof_usergroup_leaveleader")."\";"); } elseif($usergroup['type'] != 4 && $usergroup['type'] != 3 && $usergroup['type'] != 5)	eval("\$leavelink = \"".$templates->get("usercp_usergroups_memberof_usergroup_leaveleader")."\";"); } elseif($usergroup['type'] != 4 && $usergroup['type'] != 3 && $usergroup['type'] != 5)
Zeile 3378	Zeile 3651
} $description = '';	} $description = '';
	$usergroup['title'] = htmlspecialchars_uni($usergroup['title']); $usergroup['usertitle'] = htmlspecialchars_uni($usergroup['usertitle']);
if($usergroup['description']) {	if($usergroup['description']) {
	$usergroup['description'] = htmlspecialchars_uni($usergroup['description']);
eval("\$description = \"".$templates->get("usercp_usergroups_memberof_usergroup_description")."\";"); } $trow = alt_trow();	eval("\$description = \"".$templates->get("usercp_usergroups_memberof_usergroup_description")."\";"); } $trow = alt_trow();
Zeile 3421	Zeile 3697
$trow = alt_trow(); $description = '';	$trow = alt_trow(); $description = '';
	$usergroup['title'] = htmlspecialchars_uni($usergroup['title']);
if($usergroup['description']) {	if($usergroup['description']) {
	$usergroup['description'] = htmlspecialchars_uni($usergroup['description']);
eval("\$description = \"".$templates->get("usercp_usergroups_joinable_usergroup_description")."\";"); }	eval("\$description = \"".$templates->get("usercp_usergroups_joinable_usergroup_description")."\";"); }
Zeile 3438	Zeile 3716
else { $conditions = $lang->usergroup_joins_anyone;	else { $conditions = $lang->usergroup_joins_anyone;
}	}
if(isset($appliedjoin[$usergroup['gid']]) && $usergroup['type'] != 5) {	if(isset($appliedjoin[$usergroup['gid']]) && $usergroup['type'] != 5) {
Zeile 3465	Zeile 3743
$usergroupleaders = ''; foreach($groupleaders[$usergroup['gid']] as $leader) {	$usergroupleaders = ''; foreach($groupleaders[$usergroup['gid']] as $leader) {
$leader['username'] = format_name($leader['username'], $leader['usergroup'], $leader['displaygroup']);	$leader['username'] = format_name(htmlspecialchars_uni($leader['username']), $leader['usergroup'], $leader['displaygroup']);
$usergroupleaders .= $comma.build_profile_link($leader['username'], $leader['uid']); $comma = $lang->comma; }	$usergroupleaders .= $comma.build_profile_link($leader['username'], $leader['uid']); $comma = $lang->comma; }
Zeile 3499	Zeile 3777
error($lang->attachments_disabled); }	error($lang->attachments_disabled); }
$attachments = '';	// Get unviewable forums $f_perm_sql = ''; $unviewable_forums = get_unviewable_forums(true); $inactiveforums = get_inactive_forums(); if($unviewable_forums) { $f_perm_sql = " AND t.fid NOT IN ($unviewable_forums)"; } if($inactiveforums) { $f_perm_sql .= " AND t.fid NOT IN ($inactiveforums)"; } $attachments = ''; $query = $db->simple_select("attachments", "SUM(filesize) AS ausage, COUNT(aid) AS acount", "uid='".$mybb->user['uid']."'"); $usage = $db->fetch_array($query); $totalattachments = $usage['acount'];
// Pagination if(!$mybb->settings['threadsperpage'] \|\| (int)$mybb->settings['threadsperpage'] < 1)	// Pagination if(!$mybb->settings['threadsperpage'] \|\| (int)$mybb->settings['threadsperpage'] < 1)
{	{
$mybb->settings['threadsperpage'] = 20; } $perpage = $mybb->settings['threadsperpage'];	$mybb->settings['threadsperpage'] = 20; } $perpage = $mybb->settings['threadsperpage'];
$page = $mybb->get_input('page', 1);	$page = $mybb->get_input('page', MyBB::INPUT_INT);
if($page > 0) { $start = ($page-1) * $perpage;	if($page > 0) { $start = ($page-1) * $perpage;
	$pages = ceil($totalattachments / $perpage); if($page > $pages) { $start = 0; $page = 1; }
} else {	} else {
Zeile 3528	Zeile 3829
FROM ".TABLE_PREFIX."attachments a LEFT JOIN ".TABLE_PREFIX."posts p ON (a.pid=p.pid) LEFT JOIN ".TABLE_PREFIX."threads t ON (t.tid=p.tid)	FROM ".TABLE_PREFIX."attachments a LEFT JOIN ".TABLE_PREFIX."posts p ON (a.pid=p.pid) LEFT JOIN ".TABLE_PREFIX."threads t ON (t.tid=p.tid)
WHERE a.uid='".$mybb->user['uid']."'	WHERE a.uid='".$mybb->user['uid']."' {$f_perm_sql}
ORDER BY p.dateline DESC LIMIT {$start}, {$perpage} ");	ORDER BY p.dateline DESC LIMIT {$start}, {$perpage} ");
Zeile 3563	Zeile 3864
} }	} }
$query = $db->simple_select("attachments", "SUM(filesize) AS ausage, COUNT(aid) AS acount", "uid='".$mybb->user['uid']."'"); $usage = $db->fetch_array($query);
$totalusage = $usage['ausage'];	$totalusage = $usage['ausage'];
$totalattachments = $usage['acount']; $friendlyusage = get_friendly_size($totalusage);	$friendlyusage = get_friendly_size((int)$totalusage);
if($mybb->usergroup['attachquota'])	if($mybb->usergroup['attachquota'])
{ $percent = round(($totalusage/($mybb->usergroup['attachquota']1024))100)."%";	{ $percent = round(($totalusage/($mybb->usergroup['attachquota']1024))100); $friendlyusage .= $lang->sprintf($lang->attachments_usage_percent, $percent);
$attachquota = get_friendly_size($mybb->usergroup['attachquota']*1024);	$attachquota = get_friendly_size($mybb->usergroup['attachquota']*1024);
$usagenote = $lang->sprintf($lang->attachments_usage_quota, $friendlyusage, $attachquota, $percent, $totalattachments);	$usagenote = $lang->sprintf($lang->attachments_usage_quota, $friendlyusage, $attachquota, $totalattachments);
} else {	} else {
$percent = $lang->unlimited;
$attachquota = $lang->unlimited; $usagenote = $lang->sprintf($lang->attachments_usage, $friendlyusage, $totalattachments); }	$attachquota = $lang->unlimited; $usagenote = $lang->sprintf($lang->attachments_usage, $friendlyusage, $totalattachments); }
Zeile 3607	Zeile 3905
{ error($lang->no_attachments_selected); }	{ error($lang->no_attachments_selected); }
	// Get unviewable forums $f_perm_sql = ''; $unviewable_forums = get_unviewable_forums(true); $inactiveforums = get_inactive_forums(); if($unviewable_forums) { $f_perm_sql = " AND p.fid NOT IN ($unviewable_forums)"; } if($inactiveforums) { $f_perm_sql .= " AND p.fid NOT IN ($inactiveforums)"; }
$aids = implode(',', array_map('intval', $mybb->input['attachments']));	$aids = implode(',', array_map('intval', $mybb->input['attachments']));
$query = $db->simple_select("attachments", "*", "aid IN ($aids) AND uid='".$mybb->user['uid']."'");	$query = $db->query(" SELECT a.*, p.fid FROM ".TABLE_PREFIX."attachments a LEFT JOIN ".TABLE_PREFIX."posts p ON (a.pid=p.pid) WHERE aid IN ({$aids}) AND a.uid={$mybb->user['uid']} {$f_perm_sql} ");
while($attachment = $db->fetch_array($query)) { remove_attachment($attachment['pid'], '', $attachment['aid']);	while($attachment = $db->fetch_array($query)) { remove_attachment($attachment['pid'], '', $attachment['aid']);
Zeile 3667	Zeile 3986
$lang->posts_day = $lang->sprintf($lang->posts_day, my_number_format($perday), $percent); $regdate = my_date('relative', $mybb->user['regdate']);	$lang->posts_day = $lang->sprintf($lang->posts_day, my_number_format($perday), $percent); $regdate = my_date('relative', $mybb->user['regdate']);
$useravatar = format_avatar(htmlspecialchars_uni($mybb->user['avatar']), $mybb->user['avatardimensions'], '100x100');	$useravatar = format_avatar($mybb->user['avatar'], $mybb->user['avatardimensions'], '100x100'); $avatar_username = htmlspecialchars_uni($mybb->user['username']);
eval("\$avatar = \"".$templates->get("usercp_currentavatar")."\";");	eval("\$avatar = \"".$templates->get("usercp_currentavatar")."\";");
$usergroup = $groupscache[$mybb->user['usergroup']]['title'];	$usergroup = htmlspecialchars_uni($groupscache[$mybb->user['usergroup']]['title']);
if($mybb->user['usergroup'] == 5 && $mybb->settings['regtype'] != "admin") { eval("\$usergroup .= \"".$templates->get("usercp_resendactivation")."\";");	if($mybb->user['usergroup'] == 5 && $mybb->settings['regtype'] != "admin") { eval("\$usergroup .= \"".$templates->get("usercp_resendactivation")."\";");
Zeile 3678	Zeile 3998
// Make reputations row $reputations = ''; if($mybb->usergroup['usereputationsystem'] == 1 && $mybb->settings['enablereputation'] == 1)	// Make reputations row $reputations = ''; if($mybb->usergroup['usereputationsystem'] == 1 && $mybb->settings['enablereputation'] == 1)
{	{
$reputation_link = get_reputation($mybb->user['reputation']); eval("\$reputation = \"".$templates->get("usercp_reputation")."\";"); }	$reputation_link = get_reputation($mybb->user['reputation']); eval("\$reputation = \"".$templates->get("usercp_reputation")."\";"); }
Zeile 3686	Zeile 4006
$latest_warnings = ''; if($mybb->settings['enablewarningsystem'] != 0 && $mybb->settings['canviewownwarning'] != 0) {	$latest_warnings = ''; if($mybb->settings['enablewarningsystem'] != 0 && $mybb->settings['canviewownwarning'] != 0) {
	if($mybb->settings['maxwarningpoints'] < 1) { $mybb->settings['maxwarningpoints'] = 10; }
$warning_level = round($mybb->user['warningpoints']/$mybb->settings['maxwarningpoints']*100); if($warning_level > 100) {	$warning_level = round($mybb->user['warningpoints']/$mybb->settings['maxwarningpoints']*100); if($warning_level > 100) {
Zeile 3727	Zeile 4051
$warning['postlink'] = get_post_link($warning['pid']); eval("\$post_link .= \"".$templates->get("usercp_warnings_warning_post")."\";"); }	$warning['postlink'] = get_post_link($warning['pid']); eval("\$post_link .= \"".$templates->get("usercp_warnings_warning_post")."\";"); }
	$warning['username'] = htmlspecialchars_uni($warning['username']);
$issuedby = build_profile_link($warning['username'], $warning['issuedby']); $date_issued = my_date('relative', $warning['dateline']); if($warning['type_title']) { $warning_type = $warning['type_title'];	$issuedby = build_profile_link($warning['username'], $warning['issuedby']); $date_issued = my_date('relative', $warning['dateline']); if($warning['type_title']) { $warning_type = $warning['type_title'];
} else	} else
{ $warning_type = $warning['title']; } $warning_type = htmlspecialchars_uni($warning_type); if($warning['points'] > 0)	{ $warning_type = $warning['title']; } $warning_type = htmlspecialchars_uni($warning_type); if($warning['points'] > 0)
{	{
$warning['points'] = "+{$warning['points']}"; } $points = $lang->sprintf($lang->warning_points, $warning['points']);	$warning['points'] = "+{$warning['points']}"; } $points = $lang->sprintf($lang->warning_points, $warning['points']);
Zeile 3759	Zeile 4084
} else {	} else {
$expires = my_date('relative', $warning['expires']);	$expires = nice_time($warning['expires']-TIME_NOW);
} $alt_bg = alt_trow(); eval("\$warnings .= \"".$templates->get("usercp_warnings_warning")."\";");	} $alt_bg = alt_trow(); eval("\$warnings .= \"".$templates->get("usercp_warnings_warning")."\";");
}	}
if($warnings) { eval("\$latest_warnings = \"".$templates->get("usercp_warnings")."\";");	if($warnings) { eval("\$latest_warnings = \"".$templates->get("usercp_warnings")."\";");
Zeile 3773	Zeile 4098
} // Format username	} // Format username
$username = format_name($mybb->user['username'], $mybb->user['usergroup'], $mybb->user['displaygroup']);	$username = format_name(htmlspecialchars_uni($mybb->user['username']), $mybb->user['usergroup'], $mybb->user['displaygroup']);
$username = build_profile_link($username, $mybb->user['uid']); // Format post numbers	$username = build_profile_link($username, $mybb->user['uid']); // Format post numbers
Zeile 3783	Zeile 4108
if($mybb->settings['usereferrals'] == 1) { $referral_link = $lang->sprintf($lang->referral_link, $settings['bburl'], $mybb->user['uid']);	if($mybb->settings['usereferrals'] == 1) { $referral_link = $lang->sprintf($lang->referral_link, $settings['bburl'], $mybb->user['uid']);
	$referral_count = (int) $mybb->user['referrals']; if($referral_count > 0) { $uid = (int) $mybb->user['uid']; eval("\$mybb->user['referrals'] = \"".$templates->get('member_referrals_link')."\";"); }
eval("\$referral_info = \"".$templates->get("usercp_referrals")."\";"); }	eval("\$referral_info = \"".$templates->get("usercp_referrals")."\";"); }
Zeile 3840	Zeile 4173
else { $subscriptions[$readthread['tid']]['lastread'] = $readthread['dateline'];	else { $subscriptions[$readthread['tid']]['lastread'] = $readthread['dateline'];
} } }	} } }
if($subscriptions) { if($mybb->settings['dotfolders'] != 0)	if($subscriptions) { if($mybb->settings['dotfolders'] != 0)
Zeile 3860	Zeile 4193
foreach($subscriptions as $thread) {	foreach($subscriptions as $thread) {
	$plugins->run_hooks("usercp_thread_subscriptions_thread");
$folder = ''; $folder_label = ''; $gotounread = '';	$folder = ''; $folder_label = ''; $gotounread = '';
Zeile 3925	Zeile 4259
} $lastpostdate = my_date('relative', $thread['lastpost']);	} $lastpostdate = my_date('relative', $thread['lastpost']);
$lastposter = $thread['lastposter'];
$lastposteruid = $thread['lastposteruid'];	$lastposteruid = $thread['lastposteruid'];
	if(!$lastposteruid && !$thread['lastposter']) { $lastposter = htmlspecialchars_uni($lang->guest); } else { $lastposter = htmlspecialchars_uni($thread['lastposter']); }
if($lastposteruid == 0) {	if($lastposteruid == 0) {
Zeile 3939	Zeile 4280
$thread['replies'] = my_number_format($thread['replies']); $thread['views'] = my_number_format($thread['views']);	$thread['replies'] = my_number_format($thread['replies']); $thread['views'] = my_number_format($thread['views']);
	$thread['username'] = htmlspecialchars_uni($thread['username']);
$thread['author'] = build_profile_link($thread['username'], $thread['uid']); eval("\$latest_subscribed_threads .= \"".$templates->get("usercp_latest_subscribed_threads")."\";");	$thread['author'] = build_profile_link($thread['username'], $thread['uid']); eval("\$latest_subscribed_threads .= \"".$templates->get("usercp_latest_subscribed_threads")."\";");
Zeile 3957	Zeile 4299
$inactiveforums = get_inactive_forums(); if($unviewable_forums) {	$inactiveforums = get_inactive_forums(); if($unviewable_forums) {
$f_perm_sql = " AND t.fid NOT IN (".$unviewable_forums.")";	$f_perm_sql = " AND t.fid NOT IN ($unviewable_forums)";
} if($inactiveforums) {	} if($inactiveforums) {
$f_perm_sql .= " AND t.fid NOT IN (".$inactiveforums.")";	$f_perm_sql .= " AND t.fid NOT IN ($inactiveforums)";
} $visible = " AND t.visible != 0";	} $visible = " AND t.visible != 0";
Zeile 4001	Zeile 4343
if(!empty($threadcache)) { $tids = implode(",", array_keys($threadcache));	if(!empty($threadcache)) { $tids = implode(",", array_keys($threadcache));
	$readforums = array();
// Read Forums $query = $db->query("	// Read Forums $query = $db->query("
Zeile 4010	Zeile 4353
WHERE f.active != 0 ORDER BY pid, disporder ");	WHERE f.active != 0 ORDER BY pid, disporder ");

while($forum = $db->fetch_array($query)) { $readforums[$forum['fid']] = $forum['lastread'];	while($forum = $db->fetch_array($query)) { $readforums[$forum['fid']] = $forum['lastread'];
Zeile 4042	Zeile 4386
$latest_threads_threads = ''; foreach($threadcache as $thread) {	$latest_threads_threads = ''; foreach($threadcache as $thread) {
	$plugins->run_hooks("usercp_latest_threads_thread");
if($thread['tid']) { $bgcolor = alt_trow();	if($thread['tid']) { $bgcolor = alt_trow();
Zeile 4158	Zeile 4503
if($thread['closed'] == 1) {	if($thread['closed'] == 1) {
$folder .= "lock"; $folder_label .= $lang->icon_lock;	$folder .= "close"; $folder_label .= $lang->icon_close;
} $folder .= "folder"; $lastpostdate = my_date('relative', $thread['lastpost']);	} $folder .= "folder"; $lastpostdate = my_date('relative', $thread['lastpost']);
$lastposter = $thread['lastposter'];	$lastposter = htmlspecialchars_uni($thread['lastposter']);
$lastposteruid = $thread['lastposteruid']; if($lastposteruid == 0)	$lastposteruid = $thread['lastposteruid']; if($lastposteruid == 0)
Zeile 4179	Zeile 4524
$thread['replies'] = my_number_format($thread['replies']); $thread['views'] = my_number_format($thread['views']);	$thread['replies'] = my_number_format($thread['replies']); $thread['views'] = my_number_format($thread['views']);
	$thread['username'] = htmlspecialchars_uni($thread['username']);
$thread['author'] = build_profile_link($thread['username'], $thread['uid']); eval("\$latest_threads_threads .= \"".$templates->get("usercp_latest_threads_threads")."\";");	$thread['author'] = build_profile_link($thread['username'], $thread['uid']); eval("\$latest_threads_threads .= \"".$templates->get("usercp_latest_threads_threads")."\";");