Vergleich usercp.php - 1.8.4 - 1.8.21

Keine Änderungen Hinzugefügt Modifiziert Entfernt
Zeile 10	Zeile 10
define("IN_MYBB", 1); define('THIS_SCRIPT', 'usercp.php');	define("IN_MYBB", 1); define('THIS_SCRIPT', 'usercp.php');
	define("ALLOWABLE_PAGE", "removesubscription,removesubscriptions");
$templatelist = "usercp,usercp_nav,usercp_profile,usercp_changename,usercp_password,usercp_subscriptions_thread,forumbit_depth2_forum_lastpost,usercp_forumsubscriptions_forum,postbit_reputation_formatted,usercp_subscriptions_thread_icon"; $templatelist .= ",usercp_usergroups_memberof_usergroup,usercp_usergroups_memberof,usercp_usergroups_joinable_usergroup,usercp_usergroups_joinable,usercp_usergroups,usercp_nav_attachments,usercp_options_style,usercp_warnings_warning_post";	$templatelist = "usercp,usercp_nav,usercp_profile,usercp_changename,usercp_password,usercp_subscriptions_thread,forumbit_depth2_forum_lastpost,usercp_forumsubscriptions_forum,postbit_reputation_formatted,usercp_subscriptions_thread_icon"; $templatelist .= ",usercp_usergroups_memberof_usergroup,usercp_usergroups_memberof,usercp_usergroups_joinable_usergroup,usercp_usergroups_joinable,usercp_usergroups,usercp_nav_attachments,usercp_options_style,usercp_warnings_warning_post";
Zeile 17	Zeile 18
$templatelist .= ",usercp_attachments_attachment,usercp_attachments,usercp_profile_away,usercp_profile_customfield,usercp_profile_profilefields,usercp_profile_customtitle,usercp_forumsubscriptions_none,usercp_profile_customtitle_currentcustom"; $templatelist .= ",usercp_forumsubscriptions,usercp_subscriptions_none,usercp_subscriptions,usercp_options_pms_from_buddys,usercp_options_tppselect,usercp_options_pppselect,usercp_themeselector,usercp_profile_customtitle_reverttitle"; $templatelist .= ",usercp_nav_editsignature,usercp_referrals,usercp_notepad,usercp_latest_threads_threads,forumdisplay_thread_gotounread,usercp_latest_threads,usercp_subscriptions_remove,usercp_nav_messenger_folder,usercp_profile_profilefields_text";	$templatelist .= ",usercp_attachments_attachment,usercp_attachments,usercp_profile_away,usercp_profile_customfield,usercp_profile_profilefields,usercp_profile_customtitle,usercp_forumsubscriptions_none,usercp_profile_customtitle_currentcustom"; $templatelist .= ",usercp_forumsubscriptions,usercp_subscriptions_none,usercp_subscriptions,usercp_options_pms_from_buddys,usercp_options_tppselect,usercp_options_pppselect,usercp_themeselector,usercp_profile_customtitle_reverttitle"; $templatelist .= ",usercp_nav_editsignature,usercp_referrals,usercp_notepad,usercp_latest_threads_threads,forumdisplay_thread_gotounread,usercp_latest_threads,usercp_subscriptions_remove,usercp_nav_messenger_folder,usercp_profile_profilefields_text";
$templatelist .= ",usercp_editsig_suspended,usercp_editsig,usercp_avatar_current,usercp_options_timezone_option,usercp_drafts";	$templatelist .= ",usercp_editsig_suspended,usercp_editsig,usercp_avatar_current,usercp_options_timezone_option,usercp_drafts,usercp_options_language,usercp_options_date_format,usercp_profile_website,usercp_latest_subscribed,usercp_warnings";
$templatelist .= ",usercp_avatar,usercp_editlists_userusercp_editlists,usercp_drafts_draft,usercp_usergroups_joingroup,usercp_attachments_none,usercp_avatar_upload,usercp_options_timezone,usercp_usergroups_joinable_usergroup_join";	$templatelist .= ",usercp_avatar,usercp_editlists_userusercp_editlists,usercp_drafts_draft,usercp_usergroups_joingroup,usercp_attachments_none,usercp_avatar_upload,usercp_options_timezone,usercp_usergroups_joinable_usergroup_join";
$templatelist .= ",usercp_warnings_warning,usercp_warnings,usercp_latest_subscribed_threads,usercp_latest_subscribed,usercp_nav_messenger_tracking,multipage,multipage_end,multipage_jump_page,multipage_nextpage,multipage_page,multipage_page_current,multipage_page_link_current,multipage_prevpage,multipage_start,usercp_options_language,usercp_options_date_format"; $templatelist .= ",codebuttons,smilieinsert_getmore,smilieinsert_smilie,smilieinsert_smilie_empty,smilieinsert,usercp_nav_messenger_compose,usercp_options_language_option,usercp_editlists";	$templatelist .= ",usercp_warnings_warning,usercp_nav_messenger_tracking,multipage,multipage_end,multipage_jump_page,multipage_nextpage,multipage_page,multipage_page_current,multipage_page_link_current,multipage_prevpage,multipage_start"; $templatelist .= ",codebuttons,usercp_nav_messenger_compose,usercp_options_language_option,usercp_editlists,usercp_profile_contact_fields_field,usercp_latest_subscribed_threads,usercp_profile_contact_fields,usercp_profile_day,usercp_nav_home";
$templatelist .= ",usercp_profile_profilefields_select_option,usercp_profile_profilefields_multiselect,usercp_profile_profilefields_select,usercp_profile_profilefields_textarea,usercp_profile_profilefields_radio,usercp_profile_profilefields_checkbox"; $templatelist .= ",usercp_options_tppselect_option,usercp_options_pppselect_option,forumbit_depth2_forum_lastpost_never,forumbit_depth2_forum_lastpost_hidden,usercp_avatar_auto_resize_auto,usercp_avatar_auto_resize_user,usercp_options";	$templatelist .= ",usercp_profile_profilefields_select_option,usercp_profile_profilefields_multiselect,usercp_profile_profilefields_select,usercp_profile_profilefields_textarea,usercp_profile_profilefields_radio,usercp_profile_profilefields_checkbox"; $templatelist .= ",usercp_options_tppselect_option,usercp_options_pppselect_option,forumbit_depth2_forum_lastpost_never,forumbit_depth2_forum_lastpost_hidden,usercp_avatar_auto_resize_auto,usercp_avatar_auto_resize_user,usercp_options";
$templatelist .= ",usercp_editlists_no_buddies,usercp_editlists_no_ignored,usercp_editlists_no_requests,usercp_editlists_received_requests,usercp_editlists_sent_requests,usercp_drafts_draft_thread,usercp_drafts_draft_forum"; $templatelist .= ",usercp_usergroups_leader_usergroup_memberlist,usercp_usergroups_leader_usergroup_moderaterequests,usercp_usergroups_memberof_usergroup_leaveprimary,usercp_usergroups_memberof_usergroup_display,usercp_email";	$templatelist .= ",usercp_editlists_no_buddies,usercp_editlists_no_ignored,usercp_editlists_no_requests,usercp_editlists_received_requests,usercp_editlists_sent_requests,usercp_drafts_draft_thread,usercp_drafts_draft_forum,usercp_editlists_user"; $templatelist .= ",usercp_usergroups_leader_usergroup_memberlist,usercp_usergroups_leader_usergroup_moderaterequests,usercp_usergroups_memberof_usergroup_leaveprimary,usercp_usergroups_memberof_usergroup_display,usercp_email,usercp_options_pms";
$templatelist .= ",usercp_usergroups_memberof_usergroup_leaveleader,usercp_usergroups_memberof_usergroup_leaveother,usercp_usergroups_memberof_usergroup_leave,usercp_usergroups_joinable_usergroup_description,usercp_options_time_format";	$templatelist .= ",usercp_usergroups_memberof_usergroup_leaveleader,usercp_usergroups_memberof_usergroup_leaveother,usercp_usergroups_memberof_usergroup_leave,usercp_usergroups_joinable_usergroup_description,usercp_options_time_format";
$templatelist .= ",usercp_editlists_sent_request,usercp_editlists_received_request,usercp_drafts_none,usercp_usergroups_memberof_usergroup_setdisplay,usercp_usergroups_memberof_usergroup_description,usercp_editlists_user,usercp_profile_day,usercp_profile_contact_fields,usercp_profile_contact_fields_field, usercp_profile_website";	$templatelist .= ",usercp_editlists_sent_request,usercp_editlists_received_request,usercp_drafts_none,usercp_usergroups_memberof_usergroup_setdisplay,usercp_usergroups_memberof_usergroup_description,usercp_options_quick_reply"; $templatelist .= ",usercp_addsubscription_thread,forumdisplay_password,forumdisplay_password_wrongpass,";
require_once "./global.php"; require_once MYBB_ROOT."inc/functions_post.php";	require_once "./global.php"; require_once MYBB_ROOT."inc/functions_post.php";
Zeile 44	Zeile 46
if(!$mybb->user['pmfolders']) {	if(!$mybb->user['pmfolders']) {
$mybb->user['pmfolders'] = "1".$lang->folder_inbox."$%%$2".$lang->folder_sent_items."$%%$3".$lang->folder_drafts."$%%$4".$lang->folder_trash; $db->update_query("users", array('pmfolders' => $mybb->user['pmfolders']), "uid='".$mybb->user['uid']."'");	$mybb->user['pmfolders'] = '1$%%$2$%%$3$%%$4'; $db->update_query('users', array('pmfolders' => $mybb->user['pmfolders']), "uid = {$mybb->user['uid']}");
} $errors = '';	} $errors = '';
Zeile 53	Zeile 55
$mybb->input['action'] = $mybb->get_input('action'); usercp_menu();	$mybb->input['action'] = $mybb->get_input('action'); usercp_menu();
	$server_http_referer = htmlentities($_SERVER['HTTP_REFERER']);
$plugins->run_hooks("usercp_start"); if($mybb->input['action'] == "do_editsig" && $mybb->request_method == "post") {	$plugins->run_hooks("usercp_start"); if($mybb->input['action'] == "do_editsig" && $mybb->request_method == "post") {
$parser_options = array( 'allow_html' => $mybb->settings['sightml'], 'filter_badwords' => 1, 'allow_mycode' => $mybb->settings['sigmycode'], 'allow_smilies' => $mybb->settings['sigsmilies'], 'allow_imgcode' => $mybb->settings['sigimgcode'], "filter_badwords" => 1	require_once MYBB_ROOT."inc/datahandlers/user.php"; $userhandler = new UserDataHandler(); $data = array( 'uid' => $mybb->user['uid'], 'signature' => $mybb->get_input('signature'),
);	);
if($mybb->user['showimages'] != 1 && $mybb->user['uid'] != 0)	$userhandler->set_data($data); if(!$userhandler->verify_signature())
{	{
$parser_options['allow_imgcode'] = 0;	$error = inline_error($userhandler->get_friendly_errors());
}	}
$parsed_sig = $parser->parse_message($mybb->get_input('signature'), $parser_options); if((($mybb->settings['sigimgcode'] == 0 && $mybb->settings['sigsmilies'] != 1) && substr_count($parsed_sig, "<img") > 0) \|\| (($mybb->settings['sigimgcode'] == 1 \|\| $mybb->settings['sigsmilies'] == 1) && substr_count($parsed_sig, "<img") > $mybb->settings['maxsigimages']) ) { if($mybb->settings['sigimgcode'] == 1) { $imgsallowed = $mybb->settings['maxsigimages']; } else { $imgsallowed = 0; } $lang->too_many_sig_images2 = $lang->sprintf($lang->too_many_sig_images2, $imgsallowed); $error = inline_error($lang->too_many_sig_images." ".$lang->too_many_sig_images2); $mybb->input['preview'] = 1; } else if($mybb->settings['siglength'] > 0) { if($mybb->settings['sigcountmycode'] == 0) { $parsed_sig = $parser->text_parse_message($mybb->get_input('signature')); } else { $parsed_sig = $mybb->get_input('signature'); } $parsed_sig = preg_replace("#\s#", "", $parsed_sig); $sig_length = my_strlen($parsed_sig); if($sig_length > $mybb->settings['siglength']) { $lang->sig_too_long = $lang->sprintf($lang->sig_too_long, $mybb->settings['siglength']); if($sig_length - $mybb->settings['siglength'] > 1) { $lang->sig_too_long .= $lang->sprintf($lang->sig_remove_chars_plural, $sig_length-$mybb->settings['siglength']); } else { $lang->sig_too_long .= $lang->sig_remove_chars_singular; } $error = inline_error($lang->sig_too_long); } }
if(isset($error) \|\| !empty($mybb->input['preview'])) { $mybb->input['action'] = "editsig";	if(isset($error) \|\| !empty($mybb->input['preview'])) { $mybb->input['action'] = "editsig";
Zeile 146	Zeile 106
case "changename": case "do_changename": add_breadcrumb($lang->nav_changename);	case "changename": case "do_changename": add_breadcrumb($lang->nav_changename);
break;	break;
case "subscriptions": add_breadcrumb($lang->ucp_nav_subscribed_threads); break;	case "subscriptions": add_breadcrumb($lang->ucp_nav_subscribed_threads); break;
Zeile 160	Zeile 120
case "avatar": case "do_avatar": add_breadcrumb($lang->nav_avatar);	case "avatar": case "do_avatar": add_breadcrumb($lang->nav_avatar);
break;	break;
case "notepad": case "do_notepad": add_breadcrumb($lang->ucp_nav_notepad);	case "notepad": case "do_notepad": add_breadcrumb($lang->ucp_nav_notepad);
Zeile 194	Zeile 154
{ // If the user has indicated that they will return on a specific day, but not month or year, assume it is current month and year if(!$mybb->get_input('awaymonth', MyBB::INPUT_INT))	{ // If the user has indicated that they will return on a specific day, but not month or year, assume it is current month and year if(!$mybb->get_input('awaymonth', MyBB::INPUT_INT))
{	{
$mybb->input['awaymonth'] = my_date('n', $awaydate);	$mybb->input['awaymonth'] = my_date('n', $awaydate);
}	}
if(!$mybb->get_input('awayyear', MyBB::INPUT_INT)) { $mybb->input['awayyear'] = my_date('Y', $awaydate);	if(!$mybb->get_input('awayyear', MyBB::INPUT_INT)) { $mybb->input['awayyear'] = my_date('Y', $awaydate);
}	}
$return_month = (int)substr($mybb->get_input('awaymonth'), 0, 2); $return_day = (int)substr($mybb->get_input('awayday'), 0, 2); $return_year = min((int)$mybb->get_input('awayyear'), 9999);	$return_month = (int)substr($mybb->get_input('awaymonth'), 0, 2); $return_day = (int)substr($mybb->get_input('awayday'), 0, 2); $return_year = min((int)$mybb->get_input('awayyear'), 9999);
Zeile 215	Zeile 175
} $returndate = "{$return_day}-{$return_month}-{$return_year}";	} $returndate = "{$return_day}-{$return_month}-{$return_year}";
} else	} else
{ $returndate = ""; }	{ $returndate = ""; }
Zeile 228	Zeile 188
); } else	); } else
{	{
$away = array( "away" => 0, "date" => '',	$away = array( "away" => 0, "date" => '',
Zeile 241	Zeile 201
"day" => $mybb->get_input('bday1', MyBB::INPUT_INT), "month" => $mybb->get_input('bday2', MyBB::INPUT_INT), "year" => $mybb->get_input('bday3', MyBB::INPUT_INT)	"day" => $mybb->get_input('bday1', MyBB::INPUT_INT), "month" => $mybb->get_input('bday2', MyBB::INPUT_INT), "year" => $mybb->get_input('bday3', MyBB::INPUT_INT)
);	);
// Set up user handler.	// Set up user handler.
require_once "inc/datahandlers/user.php";	require_once MYBB_ROOT."inc/datahandlers/user.php";
$userhandler = new UserDataHandler("update"); $user = array(	$userhandler = new UserDataHandler("update"); $user = array(
Zeile 257	Zeile 217
"away" => $away, "profile_fields" => $mybb->get_input('profile_fields', MyBB::INPUT_ARRAY) );	"away" => $away, "profile_fields" => $mybb->get_input('profile_fields', MyBB::INPUT_ARRAY) );
foreach(array('icq', 'aim', 'yahoo', 'skype', 'google') as $cfield)	foreach(array('icq', 'yahoo', 'skype', 'google') as $cfield)
{ $csetting = 'allow'.$cfield.'field'; if($mybb->settings[$csetting] == '')	{ $csetting = 'allow'.$cfield.'field'; if($mybb->settings[$csetting] == '')
{ continue; }	{ continue; }
if(!is_member($mybb->settings[$csetting]))	if(!is_member($mybb->settings[$csetting]))
{	{
continue;	continue;
}	}
if($cfield == 'icq')	if($cfield == 'icq')
{ $user[$cfield] = $mybb->get_input($cfield, 1); } else	{ $user[$cfield] = $mybb->get_input($cfield, 1); } else
{ $user[$cfield] = $mybb->get_input($cfield); } }	{ $user[$cfield] = $mybb->get_input($cfield); } }

if($mybb->usergroup['canchangewebsite'] == 1) { $user['website'] = $mybb->get_input('website');	if($mybb->usergroup['canchangewebsite'] == 1) { $user['website'] = $mybb->get_input('website');
Zeile 291	Zeile 251
{ $user['usertitle'] = $mybb->get_input('usertitle'); }	{ $user['usertitle'] = $mybb->get_input('usertitle'); }
else if(!empty($mybb->input['reverttitle']))	elseif(!empty($mybb->input['reverttitle']))
{ $user['usertitle'] = ''; }	{ $user['usertitle'] = ''; }
Zeile 301	Zeile 261
if(!$userhandler->validate_user()) { $errors = $userhandler->get_friendly_errors();	if(!$userhandler->validate_user()) { $errors = $userhandler->get_friendly_errors();
	$raw_errors = $userhandler->get_errors();

// Set allowed value otherwise select options disappear if(in_array($lang->userdata_invalid_birthday_privacy, $errors))	// Set to stored value if invalid if(array_key_exists("invalid_birthday_privacy", $raw_errors))
{	{
$mybb->input['birthdayprivacy'] = 'none';	$mybb->input['birthdayprivacy'] = $mybb->user['birthdayprivacy'];
} $errors = inline_error($errors);	} $errors = inline_error($errors);
Zeile 373	Zeile 334
{ $allselected = " selected=\"selected\""; }	{ $allselected = " selected=\"selected\""; }
else if($user['birthdayprivacy'] == 'none')	elseif($user['birthdayprivacy'] == 'none')
{ $noneselected = " selected=\"selected\""; }	{ $noneselected = " selected=\"selected\""; }
else if($user['birthdayprivacy'] == 'age')	elseif($user['birthdayprivacy'] == 'age')
{ $ageselected = " selected=\"selected\""; }	{ $ageselected = " selected=\"selected\""; }
if($user['website'] == "" \|\| $user['website'] == "http://")	if(!my_validate_url($user['website']))
{	{
$user['website'] = "http://";	$user['website'] = '';
} else {	} else {
Zeile 394	Zeile 355
if($user['icq'] != "0") { $user['icq'] = (int)$user['icq'];	if($user['icq'] != "0") { $user['icq'] = (int)$user['icq'];
}	}
if($user['icq'] == 0)	if($user['icq'] == 0)
{	{
$user['icq'] = '';	$user['icq'] = '';
}	}
if($errors) { $user['skype'] = htmlspecialchars_uni($user['skype']); $user['google'] = htmlspecialchars_uni($user['google']);	if($errors) { $user['skype'] = htmlspecialchars_uni($user['skype']); $user['google'] = htmlspecialchars_uni($user['google']);
$user['aim'] = htmlspecialchars_uni($user['aim']);
$user['yahoo'] = htmlspecialchars_uni($user['yahoo']); }	$user['yahoo'] = htmlspecialchars_uni($user['yahoo']); }

$contact_fields = array(); $contactfields = '';	$contact_fields = array(); $contactfields = '';
foreach(array('icq', 'aim', 'yahoo', 'skype', 'google') as $cfield)	$cfieldsshow = false; foreach(array('icq', 'yahoo', 'skype', 'google') as $cfield)
{ $contact_fields[$cfield] = ''; $csetting = 'allow'.$cfield.'field';	{ $contact_fields[$cfield] = ''; $csetting = 'allow'.$cfield.'field';
Zeile 434	Zeile 396
eval('$contact_fields[$cfield] = "'.$templates->get('usercp_profile_contact_fields_field').'";'); }	eval('$contact_fields[$cfield] = "'.$templates->get('usercp_profile_contact_fields_field').'";'); }
if(!empty($cfieldsshow))	if($cfieldsshow)
{ eval('$contactfields = "'.$templates->get('usercp_profile_contact_fields').'";'); }	{ eval('$contactfields = "'.$templates->get('usercp_profile_contact_fields').'";'); }
Zeile 566	Zeile 528
foreach($useropts as $key => $val) { $val = htmlspecialchars_uni($val);	foreach($useropts as $key => $val) { $val = htmlspecialchars_uni($val);
$seloptions[$val] = $val; } } $expoptions = explode("\n", $options); if(is_array($expoptions)) { foreach($expoptions as $key => $val) { $val = trim($val); $val = str_replace("\n", "\\n", $val); $sel = ""; if($val == $seloptions[$val]) { $sel = " selected=\"selected\""; }	$seloptions[$val] = $val; } } $expoptions = explode("\n", $options); if(is_array($expoptions)) { foreach($expoptions as $key => $val) { $val = trim($val); $val = str_replace("\n", "\\n", $val); $sel = ""; if(isset($seloptions[$val]) && $val == $seloptions[$val]) { $sel = " selected=\"selected\""; }
eval("\$select .= \"".$templates->get("usercp_profile_profilefields_select_option")."\";"); } if(!$profilefield['length']) { $profilefield['length'] = 3;	eval("\$select .= \"".$templates->get("usercp_profile_profilefields_select_option")."\";"); } if(!$profilefield['length']) { $profilefield['length'] = 3;
}	}
eval("\$code = \"".$templates->get("usercp_profile_profilefields_multiselect")."\";"); } } elseif($type == "select")	eval("\$code = \"".$templates->get("usercp_profile_profilefields_multiselect")."\";"); } } elseif($type == "select")
{ $expoptions = explode("\n", $options); if(is_array($expoptions)) {	{ $expoptions = explode("\n", $options); if(is_array($expoptions)) {
foreach($expoptions as $key => $val) { $val = trim($val); $val = str_replace("\n", "\\n", $val); $sel = ""; if($val == htmlspecialchars_uni($userfield))	foreach($expoptions as $key => $val) { $val = trim($val); $val = str_replace("\n", "\\n", $val); $sel = ""; if($val == htmlspecialchars_uni($userfield))
{	{
$sel = " selected=\"selected\""; }	$sel = " selected=\"selected\""; }
Zeile 620	Zeile 582
} elseif($type == "radio") {	} elseif($type == "radio") {
	$userfield = htmlspecialchars_uni($userfield);
$expoptions = explode("\n", $options); if(is_array($expoptions)) {	$expoptions = explode("\n", $options); if(is_array($expoptions)) {
Zeile 632	Zeile 595
} eval("\$code .= \"".$templates->get("usercp_profile_profilefields_radio")."\";");	} eval("\$code .= \"".$templates->get("usercp_profile_profilefields_radio")."\";");
} } }	} } }
elseif($type == "checkbox") {	elseif($type == "checkbox") {
	$userfield = htmlspecialchars_uni($userfield);
if($errors) { $useropts = $userfield;	if($errors) { $useropts = $userfield;
Zeile 658	Zeile 622
foreach($expoptions as $key => $val) { $checked = "";	foreach($expoptions as $key => $val) { $checked = "";
if($val == $seloptions[$val])	if(isset($seloptions[$val]) && $val == $seloptions[$val])
{ $checked = " checked=\"checked\""; }	{ $checked = " checked=\"checked\""; }
Zeile 699	Zeile 663
$options = ""; $expoptions = ""; $useropts = "";	$options = ""; $expoptions = ""; $useropts = "";
$seloptions = "";	$seloptions = array();
} } if($customfields)	} } if($customfields)
Zeile 718	Zeile 682
{ if($title['posts'] <= $mybb->user['postnum']) {	{ if($title['posts'] <= $mybb->user['postnum']) {
$defaulttitle = $title['title'];	$defaulttitle = htmlspecialchars_uni($title['title']);
break; } }	break; } }
Zeile 741	Zeile 705
$user['usertitle'] = $mybb->user['usertitle']; } }	$user['usertitle'] = $mybb->user['usertitle']; } }
$user['usertitle'] = htmlspecialchars_uni($user['usertitle']);	$user['usertitle'] = htmlspecialchars_uni($user['usertitle']);
$currentcustom = $reverttitle = ''; if(!empty($mybb->user['usertitle']))	$currentcustom = $reverttitle = ''; if(!empty($mybb->user['usertitle']))
Zeile 754	Zeile 718
eval("\$reverttitle = \"".$templates->get("usercp_profile_customtitle_reverttitle")."\";"); } }	eval("\$reverttitle = \"".$templates->get("usercp_profile_customtitle_reverttitle")."\";"); } }

eval("\$customtitle = \"".$templates->get("usercp_profile_customtitle")."\";");	eval("\$customtitle = \"".$templates->get("usercp_profile_customtitle")."\";");
} else {	} else {
$customtitle = "";	$customtitle = "";
}	}
if($mybb->usergroup['canchangewebsite'] == 1) { eval("\$website = \"".$templates->get("usercp_profile_website")."\";"); }	if($mybb->usergroup['canchangewebsite'] == 1) { eval("\$website = \"".$templates->get("usercp_profile_website")."\";"); }

$plugins->run_hooks("usercp_profile_end"); eval("\$editprofile = \"".$templates->get("usercp_profile")."\";");	$plugins->run_hooks("usercp_profile_end"); eval("\$editprofile = \"".$templates->get("usercp_profile")."\";");
Zeile 790	Zeile 754
"dateformat" => $mybb->get_input('dateformat', MyBB::INPUT_INT), "timeformat" => $mybb->get_input('timeformat', MyBB::INPUT_INT), "timezone" => $db->escape_string($mybb->get_input('timezoneoffset')),	"dateformat" => $mybb->get_input('dateformat', MyBB::INPUT_INT), "timeformat" => $mybb->get_input('timeformat', MyBB::INPUT_INT), "timezone" => $db->escape_string($mybb->get_input('timezoneoffset')),
"language" => $mybb->get_input('language')	"language" => $mybb->get_input('language'), 'usergroup' => $mybb->user['usergroup'], 'additionalgroups' => $mybb->user['additionalgroups']
); $user['options'] = array(	); $user['options'] = array(
Zeile 829	Zeile 795
} $userhandler->set_data($user);	} $userhandler->set_data($user);

if(!$userhandler->validate_user()) {	if(!$userhandler->validate_user()) {
Zeile 913	Zeile 878
{ $no_subscribe_selected = "selected=\"selected\""; }	{ $no_subscribe_selected = "selected=\"selected\""; }
else if(isset($user['subscriptionmethod']) && $user['subscriptionmethod'] == 2)	elseif(isset($user['subscriptionmethod']) && $user['subscriptionmethod'] == 2)
{ $instant_email_subscribe_selected = "selected=\"selected\""; }	{ $instant_email_subscribe_selected = "selected=\"selected\""; }
else if(isset($user['subscriptionmethod']) && $user['subscriptionmethod'] == 3)	elseif(isset($user['subscriptionmethod']) && $user['subscriptionmethod'] == 3)
{ $instant_pm_subscribe_selected = "selected=\"selected\""; }	{ $instant_pm_subscribe_selected = "selected=\"selected\""; }
Zeile 938	Zeile 903
if(isset($user['showvideos']) && $user['showvideos'] == 1) { $showvideoscheck = "checked=\"checked\"";	if(isset($user['showvideos']) && $user['showvideos'] == 1) { $showvideoscheck = "checked=\"checked\"";
}	}
else	else
{	{
$showvideoscheck = ""; } if(isset($user['showsigs']) && $user['showsigs'] == 1)	$showvideoscheck = ""; } if(isset($user['showsigs']) && $user['showsigs'] == 1)
{	{
$showsigscheck = "checked=\"checked\"";	$showsigscheck = "checked=\"checked\"";
}	}
else { $showsigscheck = "";	else { $showsigscheck = "";
}	}
if(isset($user['showavatars']) && $user['showavatars'] == 1) { $showavatarscheck = "checked=\"checked\"";	if(isset($user['showavatars']) && $user['showavatars'] == 1) { $showavatarscheck = "checked=\"checked\"";
Zeile 965	Zeile 930
if(isset($user['showquickreply']) && $user['showquickreply'] == 1) { $showquickreplycheck = "checked=\"checked\"";	if(isset($user['showquickreply']) && $user['showquickreply'] == 1) { $showquickreplycheck = "checked=\"checked\"";
} else {	} else {
$showquickreplycheck = ""; } if(isset($user['receivepms']) && $user['receivepms'] == 1) { $receivepmscheck = "checked=\"checked\"";	$showquickreplycheck = ""; } if(isset($user['receivepms']) && $user['receivepms'] == 1) { $receivepmscheck = "checked=\"checked\"";
}	}
else	else
{	{
$receivepmscheck = ""; } if(isset($user['receivefrombuddy']) && $user['receivefrombuddy'] == 1)	$receivepmscheck = ""; } if(isset($user['receivefrombuddy']) && $user['receivefrombuddy'] == 1)
{	{
$receivefrombuddycheck = "checked=\"checked\"";	$receivefrombuddycheck = "checked=\"checked\"";
}	}
else { $receivefrombuddycheck = "";	else { $receivefrombuddycheck = "";
}	}
if(isset($user['pmnotice']) && $user['pmnotice'] >= 1)	if(isset($user['pmnotice']) && $user['pmnotice'] >= 1)
{	{
$pmnoticecheck = " checked=\"checked\"";	$pmnoticecheck = " checked=\"checked\"";
}	}
else { $pmnoticecheck = "";	else { $pmnoticecheck = "";
}	}
$dst_auto_selected = $dst_enabled_selected = $dst_disabled_selected = ''; if(isset($user['dstcorrection']) && $user['dstcorrection'] == 2)	$dst_auto_selected = $dst_enabled_selected = $dst_disabled_selected = ''; if(isset($user['dstcorrection']) && $user['dstcorrection'] == 2)
{	{
$dst_auto_selected = "selected=\"selected\""; }	$dst_auto_selected = "selected=\"selected\""; }
else if(isset($user['dstcorrection']) && $user['dstcorrection'] == 1)	elseif(isset($user['dstcorrection']) && $user['dstcorrection'] == 1)
{ $dst_enabled_selected = "selected=\"selected\"";	{ $dst_enabled_selected = "selected=\"selected\"";
}	}
else { $dst_disabled_selected = "selected=\"selected\""; } if(isset($user['showcodebuttons']) && $user['showcodebuttons'] == 1)	else { $dst_disabled_selected = "selected=\"selected\""; } if(isset($user['showcodebuttons']) && $user['showcodebuttons'] == 1)
{	{
$showcodebuttonscheck = "checked=\"checked\""; } else	$showcodebuttonscheck = "checked=\"checked\""; } else
Zeile 1028	Zeile 993
else { $sourcemodecheck = "";	else { $sourcemodecheck = "";
}	}
if(isset($user['showredirect']) && $user['showredirect'] != 0)	if(isset($user['showredirect']) && $user['showredirect'] != 0)
{	{
$showredirectcheck = "checked=\"checked\"";	$showredirectcheck = "checked=\"checked\"";
} else {	} else {
$showredirectcheck = ""; } if(isset($user['pmnotify']) && $user['pmnotify'] != 0) { $pmnotifycheck = "checked=\"checked\"";	$showredirectcheck = ""; } if(isset($user['pmnotify']) && $user['pmnotify'] != 0) { $pmnotifycheck = "checked=\"checked\"";
} else {	} else {
$pmnotifycheck = ''; }	$pmnotifycheck = ''; }

if(isset($user['buddyrequestspm']) && $user['buddyrequestspm'] != 0) { $buddyrequestspmcheck = "checked=\"checked\"";	if(isset($user['buddyrequestspm']) && $user['buddyrequestspm'] != 0) { $buddyrequestspmcheck = "checked=\"checked\"";
}	}
else { $buddyrequestspmcheck = ''; } if(isset($user['buddyrequestsauto']) && $user['buddyrequestsauto'] != 0)	else { $buddyrequestspmcheck = ''; } if(isset($user['buddyrequestsauto']) && $user['buddyrequestsauto'] != 0)
{	{
$buddyrequestsautocheck = "checked=\"checked\"";	$buddyrequestsautocheck = "checked=\"checked\"";
} else	} else
{ $buddyrequestsautocheck = '';	{ $buddyrequestsautocheck = '';
} if(!isset($user['threadmode']) \|\| ($user['threadmode'] != "threaded" && $user['threadmode'] != "linear"))	} if(!isset($user['threadmode']) \|\| ($user['threadmode'] != "threaded" && $user['threadmode'] != "linear"))
{ $user['threadmode'] = ''; // Leave blank to show default }	{ $user['threadmode'] = ''; // Leave blank to show default }
Zeile 1078	Zeile 1043
else { $classicpostbitcheck = '';	else { $classicpostbitcheck = '';
}	}
$date_format_options = $dateformat = ''; foreach($date_formats as $key => $format)	$date_format_options = $dateformat = ''; foreach($date_formats as $key => $format)
{ $selected = '';	{ $selected = '';
if(isset($user['dateformat']) && $user['dateformat'] == $key) { $selected = " selected=\"selected\""; }	if(isset($user['dateformat']) && $user['dateformat'] == $key) { $selected = " selected=\"selected\""; }

$dateformat = my_date($format, TIME_NOW, "", 0); eval("\$date_format_options .= \"".$templates->get("usercp_options_date_format")."\";"); }	$dateformat = my_date($format, TIME_NOW, "", 0); eval("\$date_format_options .= \"".$templates->get("usercp_options_date_format")."\";"); }
Zeile 1098	Zeile 1063
{ $selected = ''; if(isset($user['timeformat']) && $user['timeformat'] == $key)	{ $selected = ''; if(isset($user['timeformat']) && $user['timeformat'] == $key)
{	{
$selected = " selected=\"selected\""; }	$selected = " selected=\"selected\""; }

$timeformat = my_date($format, TIME_NOW, "", 0); eval("\$time_format_options .= \"".$templates->get("usercp_options_time_format")."\";");	$timeformat = my_date($format, TIME_NOW, "", 0); eval("\$time_format_options .= \"".$templates->get("usercp_options_time_format")."\";");
} $tzselect = build_timezone_select("timezoneoffset", $mybb->user['timezone'], true);	} $tzselect = build_timezone_select("timezoneoffset", $mybb->user['timezone'], true);
$pms_from_buddys = ''; if($mybb->settings['allowbuddyonly'] == 1) { eval("\$pms_from_buddys = \"".$templates->get("usercp_options_pms_from_buddys")."\";");	$pms_from_buddys = ''; if($mybb->settings['allowbuddyonly'] == 1) { eval("\$pms_from_buddys = \"".$templates->get("usercp_options_pms_from_buddys")."\";");
	} $pms = ''; if($mybb->settings['enablepms'] != 0 && $mybb->usergroup['canusepms'] == 1) { eval("\$pms = \"".$templates->get("usercp_options_pms")."\";"); } $quick_reply = ''; if($mybb->settings['quickreply'] == 1) { eval("\$quick_reply = \"".$templates->get("usercp_options_quick_reply")."\";");
} $threadview = array('linear' => '', 'threaded' => ''); if(isset($user['threadmode']) && is_scalar($user['threadmode'])) { $threadview[$user['threadmode']] = 'selected="selected"';	} $threadview = array('linear' => '', 'threaded' => ''); if(isset($user['threadmode']) && is_scalar($user['threadmode'])) { $threadview[$user['threadmode']] = 'selected="selected"';
}	}
$daysprunesel = array(1 => '', 5 => '', 10 => '', 20 => '', 50 => '', 75 => '', 100 => '', 365 => '', 9999 => ''); if(isset($user['daysprune']) && is_numeric($user['daysprune'])) {	$daysprunesel = array(1 => '', 5 => '', 10 => '', 20 => '', 50 => '', 75 => '', 100 => '', 365 => '', 9999 => ''); if(isset($user['daysprune']) && is_numeric($user['daysprune'])) {
Zeile 1158	Zeile 1135
} } eval("\$tppselect = \"".$templates->get("usercp_options_tppselect")."\";");	} } eval("\$tppselect = \"".$templates->get("usercp_options_tppselect")."\";");
}	}
if($mybb->settings['userpppoptions']) {	if($mybb->settings['userpppoptions']) {
Zeile 1177	Zeile 1154
$ppp_option = $lang->sprintf($lang->ppp_option, $val); eval("\$pppoptions .= \"".$templates->get("usercp_options_pppselect_option")."\";");	$ppp_option = $lang->sprintf($lang->ppp_option, $val); eval("\$pppoptions .= \"".$templates->get("usercp_options_pppselect_option")."\";");
} }	} }
eval("\$pppselect = \"".$templates->get("usercp_options_pppselect")."\";"); }	eval("\$pppselect = \"".$templates->get("usercp_options_pppselect")."\";"); }
Zeile 1203	Zeile 1180
else { // Set up user handler.	else { // Set up user handler.
require_once "inc/datahandlers/user.php";	require_once MYBB_ROOT."inc/datahandlers/user.php";
$userhandler = new UserDataHandler("update"); $user = array(	$userhandler = new UserDataHandler("update"); $user = array(
Zeile 1220	Zeile 1197
} else {	} else {
if($mybb->user['usergroup'] != "5" && $mybb->usergroup['cancp'] != 1 && $mybb->settings['regtype'] != "verify")	$activation = false; // Checking for pending activations for non-activated accounts if($mybb->user['usergroup'] == 5 && ($mybb->settings['regtype'] == "verify" \|\| $mybb->settings['regtype'] == "both")) { $query = $db->simple_select("awaitingactivation", "*", "uid='".$mybb->user['uid']."' AND (type='r' OR type='b')"); $activation = $db->fetch_array($query); } if($activation) { $userhandler->update_user(); $db->delete_query("awaitingactivation", "uid='".$mybb->user['uid']."'"); // Send new activation mail for non-activated accounts $activationcode = random_str(); $activationarray = array( "uid" => $mybb->user['uid'], "dateline" => TIME_NOW, "code" => $activationcode, "type" => $activation['type'] ); $db->insert_query("awaitingactivation", $activationarray); $emailsubject = $lang->sprintf($lang->emailsubject_activateaccount, $mybb->settings['bbname']); switch($mybb->settings['username_method']) { case 0: $emailmessage = $lang->sprintf($lang->email_activateaccount, $mybb->user['username'], $mybb->settings['bbname'], $mybb->settings['bburl'], $mybb->user['uid'], $activationcode); break; case 1: $emailmessage = $lang->sprintf($lang->email_activateaccount1, $mybb->user['username'], $mybb->settings['bbname'], $mybb->settings['bburl'], $mybb->user['uid'], $activationcode); break; case 2: $emailmessage = $lang->sprintf($lang->email_activateaccount2, $mybb->user['username'], $mybb->settings['bbname'], $mybb->settings['bburl'], $mybb->user['uid'], $activationcode); break; default: $emailmessage = $lang->sprintf($lang->email_activateaccount, $mybb->user['username'], $mybb->settings['bbname'], $mybb->settings['bburl'], $mybb->user['uid'], $activationcode); break; } my_mail($mybb->user['email'], $emailsubject, $emailmessage); $plugins->run_hooks("usercp_do_email_changed"); redirect("usercp.php?action=email", $lang->redirect_emailupdated); } elseif($mybb->usergroup['cancp'] != 1 && ($mybb->settings['regtype'] == "verify" \|\| $mybb->settings['regtype'] == "both"))
{ $uid = $mybb->user['uid']; $username = $mybb->user['username'];	{ $uid = $mybb->user['uid']; $username = $mybb->user['username'];
Zeile 1299	Zeile 1319
else { // Set up user handler.	else { // Set up user handler.
require_once "inc/datahandlers/user.php";	require_once MYBB_ROOT."inc/datahandlers/user.php";
$userhandler = new UserDataHandler("update"); $user = array(	$userhandler = new UserDataHandler("update"); $user = array(
Zeile 1317	Zeile 1337
else { $userhandler->update_user();	else { $userhandler->update_user();
my_setcookie("mybbuser", $mybb->user['uid']."_".$userhandler->data['loginkey']);	my_setcookie("mybbuser", $mybb->user['uid']."_".$userhandler->data['loginkey'], null, true, "lax");
// Notify the user by email that their password has been changed $mail_message = $lang->sprintf($lang->email_changepassword, $mybb->user['username'], $mybb->user['email'], $mybb->settings['bbname'], $mybb->settings['bburl']);	// Notify the user by email that their password has been changed $mail_message = $lang->sprintf($lang->email_changepassword, $mybb->user['username'], $mybb->user['email'], $mybb->settings['bbname'], $mybb->settings['bburl']);
Zeile 1361	Zeile 1381
else { // Set up user handler.	else { // Set up user handler.
require_once "inc/datahandlers/user.php";	require_once MYBB_ROOT."inc/datahandlers/user.php";
$userhandler = new UserDataHandler("update"); $user = array(	$userhandler = new UserDataHandler("update"); $user = array(
Zeile 1432	Zeile 1452
{ $new_notification = 0; }	{ $new_notification = 0; }
else if($mybb->get_input('do') == "email_notification")	elseif($mybb->get_input('do') == "email_notification")
{ $new_notification = 1; }	{ $new_notification = 1; }
else if($mybb->get_input('do') == "pm_notification")	elseif($mybb->get_input('do') == "pm_notification")
{ $new_notification = 2; }	{ $new_notification = 2; }
Zeile 1523	Zeile 1543
// Hmm, you don't have permission to view this thread - unsubscribe! $del_subscriptions[] = $subscription['sid']; }	// Hmm, you don't have permission to view this thread - unsubscribe! $del_subscriptions[] = $subscription['sid']; }
else if($subscription['tid'])	elseif($subscription['tid'])
{ $subscriptions[$subscription['tid']] = $subscription; }	{ $subscriptions[$subscription['tid']] = $subscription; }
Zeile 1549	Zeile 1569
if(!empty($subscriptions)) { $tids = implode(",", array_keys($subscriptions));	if(!empty($subscriptions)) { $tids = implode(",", array_keys($subscriptions));
	$readforums = array();

if($mybb->user['uid'] == 0) { // Build a forum cache. $query = $db->simple_select('forums', 'fid', 'active != 0', array('order_by' => 'pid, disporder'));	// Build a forum cache. $query = $db->query(" SELECT f.fid, fr.dateline AS lastread FROM ".TABLE_PREFIX."forums f LEFT JOIN ".TABLE_PREFIX."forumsread fr ON (fr.fid=f.fid AND fr.uid='{$mybb->user['uid']}') WHERE f.active != 0 ORDER BY pid, disporder ");

$forumsread = my_unserialize($mybb->cookies['mybb']['forumread']); } else { // Build a forum cache. $query = $db->query(" SELECT f.fid, fr.dateline AS lastread FROM ".TABLE_PREFIX."forums f LEFT JOIN ".TABLE_PREFIX."forumsread fr ON (fr.fid=f.fid AND fr.uid='{$mybb->user['uid']}') WHERE f.active != 0 ORDER BY pid, disporder "); }
while($forum = $db->fetch_array($query)) {	while($forum = $db->fetch_array($query)) {
if($mybb->user['uid'] == 0) { if($forumsread[$forum['fid']]) { $forum['lastread'] = $forumsread[$forum['fid']]; } }
$readforums[$forum['fid']] = $forum['lastread']; }	$readforums[$forum['fid']] = $forum['lastread']; }
Zeile 1587	Zeile 1592
while($post = $db->fetch_array($query)) { $subscriptions[$post['tid']]['doticon'] = 1;	while($post = $db->fetch_array($query)) { $subscriptions[$post['tid']]['doticon'] = 1;
} }	} }
// Read threads if($mybb->settings['threadreadcut'] > 0) {	// Read threads if($mybb->settings['threadreadcut'] > 0) {
Zeile 1599	Zeile 1604
$subscriptions[$readthread['tid']]['lastread'] = $readthread['dateline']; } }	$subscriptions[$readthread['tid']]['lastread'] = $readthread['dateline']; } }

$icon_cache = $cache->read("posticons"); $threadprefixes = build_prefixes();	$icon_cache = $cache->read("posticons"); $threadprefixes = build_prefixes();

$threads = '';	$threads = '';

// Now we can build our subscription list foreach($subscriptions as $thread) { $bgcolor = alt_trow();	// Now we can build our subscription list foreach($subscriptions as $thread) { $bgcolor = alt_trow();
$folder = '';	$folder = '';
$prefix = ''; $thread['threadprefix'] = '';	$prefix = ''; $thread['threadprefix'] = '';
Zeile 1630	Zeile 1635
// Fetch the thread icon if we have one if($thread['icon'] > 0 && $icon_cache[$thread['icon']])	// Fetch the thread icon if we have one if($thread['icon'] > 0 && $icon_cache[$thread['icon']])
{	{
$icon = $icon_cache[$thread['icon']]; $icon['path'] = str_replace("{theme}", $theme['imgdir'], $icon['path']); $icon['path'] = htmlspecialchars_uni($icon['path']);	$icon = $icon_cache[$thread['icon']]; $icon['path'] = str_replace("{theme}", $theme['imgdir'], $icon['path']); $icon['path'] = htmlspecialchars_uni($icon['path']);
Zeile 1645	Zeile 1650
// Determine the folder $folder = ''; $folder_label = '';	// Determine the folder $folder = ''; $folder_label = '';

if(isset($thread['doticon'])) { $folder = "dot_";	if(isset($thread['doticon'])) { $folder = "dot_";
Zeile 1657	Zeile 1662
$donenew = 0; $lastread = 0;	$donenew = 0; $lastread = 0;
if($mybb->settings['threadreadcut'] > 0 && $mybb->user['uid'])	if($mybb->settings['threadreadcut'] > 0)
{ $forum_read = $readforums[$thread['fid']]; $read_cutoff = TIME_NOW-$mybb->settings['threadreadcut']6060*24; if($forum_read == 0 \|\| $forum_read < $read_cutoff)	{ $forum_read = $readforums[$thread['fid']]; $read_cutoff = TIME_NOW-$mybb->settings['threadreadcut']6060*24; if($forum_read == 0 \|\| $forum_read < $read_cutoff)
{	{
$forum_read = $read_cutoff; }	$forum_read = $read_cutoff; }
} else { $forum_read = $forumsread[$thread['fid']];
} $cutoff = 0;	} $cutoff = 0;
Zeile 1687	Zeile 1688
else { $lastread = 1;	else { $lastread = 1;
} }	} }
if(!$lastread)	if(!$lastread)
{	{
$readcookie = $threadread = my_get_array_cookie("threadread", $thread['tid']); if($readcookie > $forum_read) { $lastread = $readcookie;	$readcookie = $threadread = my_get_array_cookie("threadread", $thread['tid']); if($readcookie > $forum_read) { $lastread = $readcookie;
}	}
else { $lastread = $forum_read; }	else { $lastread = $forum_read; }
}	}
if($lastread && $lastread < $thread['lastpost']) {	if($lastread && $lastread < $thread['lastpost']) {
Zeile 1725	Zeile 1726
} if($thread['closed'] == 1)	} if($thread['closed'] == 1)
{ $folder .= "lock"; $folder_label .= $lang->icon_lock; } $folder .= "folder";	{ $folder .= "close"; $folder_label .= $lang->icon_close; } $folder .= "folder";
if($thread['visible'] == 0) { $bgcolor = "trow_shaded";	if($thread['visible'] == 0) { $bgcolor = "trow_shaded";
Zeile 1739	Zeile 1740
// Build last post info $lastpostdate = my_date('relative', $thread['lastpost']);	// Build last post info $lastpostdate = my_date('relative', $thread['lastpost']);
$lastposter = $thread['lastposter'];	if(!$lastposteruid && !$thread['lastposter']) { $lastposter = htmlspecialchars_uni($lang->guest); } else { $lastposter = htmlspecialchars_uni($thread['lastposter']); }
$lastposteruid = $thread['lastposteruid']; // Don't link to guest's profiles (they have no profile).	$lastposteruid = $thread['lastposteruid']; // Don't link to guest's profiles (they have no profile).
Zeile 1748	Zeile 1756
$lastposterlink = $lastposter; } else	$lastposterlink = $lastposter; } else
{	{
$lastposterlink = build_profile_link($lastposter, $lastposteruid); }	$lastposterlink = build_profile_link($lastposter, $lastposteruid); }
Zeile 1773	Zeile 1781
// Provide remove options eval("\$remove_options = \"".$templates->get("usercp_subscriptions_remove")."\";");	// Provide remove options eval("\$remove_options = \"".$templates->get("usercp_subscriptions_remove")."\";");
} else {	} else {
$remove_options = ''; eval("\$threads = \"".$templates->get("usercp_subscriptions_none")."\";");	$remove_options = ''; eval("\$threads = \"".$templates->get("usercp_subscriptions_none")."\";");
}	}
$plugins->run_hooks("usercp_subscriptions_end");	$plugins->run_hooks("usercp_subscriptions_end");
Zeile 1790	Zeile 1798
{ $plugins->run_hooks("usercp_forumsubscriptions_start");	{ $plugins->run_hooks("usercp_forumsubscriptions_start");
if($mybb->user['uid'] == 0) { // Build a forum cache. $query = $db->query(" SELECT fid FROM ".TABLE_PREFIX."forums WHERE active != 0 ORDER BY pid, disporder "); if(isset($mybb->cookies['mybb']['forumread'])) { $forumsread = my_unserialize($mybb->cookies['mybb']['forumread']); } } else { // Build a forum cache. $query = $db->query(" SELECT f.fid, fr.dateline AS lastread FROM ".TABLE_PREFIX."forums f LEFT JOIN ".TABLE_PREFIX."forumsread fr ON (fr.fid=f.fid AND fr.uid='{$mybb->user['uid']}') WHERE f.active != 0 ORDER BY pid, disporder "); }	// Build a forum cache. $query = $db->query(" SELECT f.fid, fr.dateline AS lastread FROM ".TABLE_PREFIX."forums f LEFT JOIN ".TABLE_PREFIX."forumsread fr ON (fr.fid=f.fid AND fr.uid='{$mybb->user['uid']}') WHERE f.active != 0 ORDER BY pid, disporder ");
$readforums = array();	$readforums = array();
while($forum = $db->fetch_array($query)) { if($mybb->user['uid'] == 0) { if($forumsread[$forum['fid']]) { $forum['lastread'] = $forumsread[$forum['fid']]; } }	while($forum = $db->fetch_array($query)) {
$readforums[$forum['fid']] = $forum['lastread']; }	$readforums[$forum['fid']] = $forum['lastread']; }
Zeile 1867	Zeile 1850
$threads = my_number_format($forum['threads']); }	$threads = my_number_format($forum['threads']); }
if($forum['lastpost'] == 0 \|\| $forum['lastposter'] == "")	if($forum['lastpost'] == 0)
{ eval("\$lastpost = \"".$templates->get("forumbit_depth2_forum_lastpost_never")."\";"); }	{ eval("\$lastpost = \"".$templates->get("forumbit_depth2_forum_lastpost_never")."\";"); }
Zeile 1881	Zeile 1864
$forum['lastpostsubject'] = $parser->parse_badwords($forum['lastpostsubject']); $lastpost_date = my_date('relative', $forum['lastpost']); $lastposttid = $forum['lastposttid'];	$forum['lastpostsubject'] = $parser->parse_badwords($forum['lastpostsubject']); $lastpost_date = my_date('relative', $forum['lastpost']); $lastposttid = $forum['lastposttid'];
$lastposter = $forum['lastposter']; $lastpost_profilelink = build_profile_link($lastposter, $forum['lastposteruid']);	if(!$forum['lastposteruid'] && !$forum['lastposter']) { $lastposter = htmlspecialchars_uni($lang->guest); } else { $lastposter = htmlspecialchars_uni($forum['lastposter']); } if($forum['lastposteruid'] == 0) { $lastpost_profilelink = $lastposter; } else { $lastpost_profilelink = build_profile_link($lastposter, $forum['lastposteruid']); }
$full_lastpost_subject = $lastpost_subject = htmlspecialchars_uni($forum['lastpostsubject']); if(my_strlen($lastpost_subject) > 25) {	$full_lastpost_subject = $lastpost_subject = htmlspecialchars_uni($forum['lastpostsubject']); if(my_strlen($lastpost_subject) > 25) {
Zeile 1895	Zeile 1892
if($mybb->settings['showdescriptions'] == 0) { $forum['description'] = "";	if($mybb->settings['showdescriptions'] == 0) { $forum['description'] = "";
}	}
eval("\$forums .= \"".$templates->get("usercp_forumsubscriptions_forum")."\";");	eval("\$forums .= \"".$templates->get("usercp_forumsubscriptions_forum")."\";");
}	}
if(!$forums) { eval("\$forums = \"".$templates->get("usercp_forumsubscriptions_none")."\";");	if(!$forums) { eval("\$forums = \"".$templates->get("usercp_forumsubscriptions_none")."\";");
Zeile 1909	Zeile 1906
eval("\$forumsubscriptions = \"".$templates->get("usercp_forumsubscriptions")."\";"); output_page($forumsubscriptions);	eval("\$forumsubscriptions = \"".$templates->get("usercp_forumsubscriptions")."\";"); output_page($forumsubscriptions);
	} if($mybb->input['action'] == "do_addsubscription" && $mybb->get_input('type') != "forum") { // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key')); $thread = get_thread($mybb->get_input('tid')); if(!$thread \|\| $thread['visible'] == -1) { error($lang->error_invalidthread); } // Is the currently logged in user a moderator of this forum? $ismod = is_moderator($thread['fid']); // Make sure we are looking at a real thread here. if(($thread['visible'] != 1 && $ismod == false) \|\| ($thread['visible'] > 1 && $ismod == true)) { error($lang->error_invalidthread); } $forumpermissions = forum_permissions($thread['fid']); if($forumpermissions['canview'] == 0 \|\| $forumpermissions['canviewthreads'] == 0 \|\| (isset($forumpermissions['canonlyviewownthreads']) && $forumpermissions['canonlyviewownthreads'] != 0 && $thread['uid'] != $mybb->user['uid'])) { error_no_permission(); } // check if the forum requires a password to view. If so, we need to show a form to the user check_forum_password($thread['fid']); // Naming of the hook retained for backward compatibility while dropping usercp2.php $plugins->run_hooks("usercp2_do_addsubscription"); add_subscribed_thread($thread['tid'], $mybb->get_input('notification', MyBB::INPUT_INT)); if($mybb->get_input('referrer')) { $url = htmlspecialchars_uni($mybb->get_input('referrer')); } else { $url = get_thread_link($thread['tid']); } redirect($url, $lang->redirect_subscriptionadded); } if($mybb->input['action'] == "addsubscription") { // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key')); if($mybb->get_input('type') == "forum") { $forum = get_forum($mybb->get_input('fid', MyBB::INPUT_INT)); if(!$forum) { error($lang->error_invalidforum); } $forumpermissions = forum_permissions($forum['fid']); if($forumpermissions['canview'] == 0 \|\| $forumpermissions['canviewthreads'] == 0) { error_no_permission(); } // check if the forum requires a password to view. If so, we need to show a form to the user check_forum_password($forum['fid']); // Naming of the hook retained for backward compatibility while dropping usercp2.php $plugins->run_hooks("usercp2_addsubscription_forum"); add_subscribed_forum($forum['fid']); if($server_http_referer && $mybb->request_method != 'post') { $url = $server_http_referer; } else { $url = "index.php"; } redirect($url, $lang->redirect_forumsubscriptionadded); } else { $thread = get_thread($mybb->get_input('tid', MyBB::INPUT_INT)); if(!$thread \|\| $thread['visible'] == -1) { error($lang->error_invalidthread); } // Is the currently logged in user a moderator of this forum? $ismod = is_moderator($thread['fid']); // Make sure we are looking at a real thread here. if(($thread['visible'] != 1 && $ismod == false) \|\| ($thread['visible'] > 1 && $ismod == true)) { error($lang->error_invalidthread); } add_breadcrumb($lang->nav_subthreads, "usercp.php?action=subscriptions"); add_breadcrumb($lang->nav_addsubscription); $forumpermissions = forum_permissions($thread['fid']); if($forumpermissions['canview'] == 0 \|\| $forumpermissions['canviewthreads'] == 0 \|\| (isset($forumpermissions['canonlyviewownthreads']) && $forumpermissions['canonlyviewownthreads'] != 0 && $thread['uid'] != $mybb->user['uid'])) { error_no_permission(); } // check if the forum requires a password to view. If so, we need to show a form to the user check_forum_password($thread['fid']); $referrer = ''; if($server_http_referer) { $referrer = $server_http_referer; } require_once MYBB_ROOT."inc/class_parser.php"; $parser = new postParser; $thread['subject'] = $parser->parse_badwords($thread['subject']); $thread['subject'] = htmlspecialchars_uni($thread['subject']); $lang->subscribe_to_thread = $lang->sprintf($lang->subscribe_to_thread, $thread['subject']); $notification_none_checked = $notification_email_checked = $notification_pm_checked = ''; if($mybb->user['subscriptionmethod'] == 1 \|\| $mybb->user['subscriptionmethod'] == 0) { $notification_none_checked = "checked=\"checked\""; } elseif($mybb->user['subscriptionmethod'] == 2) { $notification_email_checked = "checked=\"checked\""; } elseif($mybb->user['subscriptionmethod'] == 3) { $notification_pm_checked = "checked=\"checked\""; } // Naming of the hook retained for backward compatibility while dropping usercp2.php $plugins->run_hooks("usercp2_addsubscription_thread"); eval("\$add_subscription = \"".$templates->get("usercp_addsubscription_thread")."\";"); output_page($add_subscription); exit; } } if($mybb->input['action'] == "removesubscription") { // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key')); if($mybb->get_input('type') == "forum") { $forum = get_forum($mybb->get_input('fid', MyBB::INPUT_INT)); if(!$forum) { error($lang->error_invalidforum); } // check if the forum requires a password to view. If so, we need to show a form to the user check_forum_password($forum['fid']); // Naming of the hook retained for backward compatibility while dropping usercp2.php $plugins->run_hooks("usercp2_removesubscription_forum"); remove_subscribed_forum($forum['fid']); if($server_http_referer && $mybb->request_method != 'post') { $url = $server_http_referer; } else { $url = "usercp.php?action=forumsubscriptions"; } redirect($url, $lang->redirect_forumsubscriptionremoved); } else { $thread = get_thread($mybb->get_input('tid', MyBB::INPUT_INT)); if(!$thread) { error($lang->error_invalidthread); } // Is the currently logged in user a moderator of this forum? $ismod = is_moderator($thread['fid']); // Make sure we are looking at a real thread here. if(($thread['visible'] != 1 && $ismod == false) \|\| ($thread['visible'] > 1 && $ismod == true)) { error($lang->error_invalidthread); } // check if the forum requires a password to view. If so, we need to show a form to the user check_forum_password($thread['fid']); // Naming of the hook retained for backward compatibility while dropping usercp2.php $plugins->run_hooks("usercp2_removesubscription_thread"); remove_subscribed_thread($thread['tid']); if($server_http_referer && $mybb->request_method != 'post') { $url = $server_http_referer; } else { $url = "usercp.php?action=subscriptions"; } redirect($url, $lang->redirect_subscriptionremoved); } } if($mybb->input['action'] == "removesubscriptions") { // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key')); if($mybb->get_input('type') == "forum") { // Naming of the hook retained for backward compatibility while dropping usercp2.php $plugins->run_hooks("usercp2_removesubscriptions_forum"); $db->delete_query("forumsubscriptions", "uid='".$mybb->user['uid']."'"); if($server_http_referer) { $url = $server_http_referer; } else { $url = "usercp.php?action=forumsubscriptions"; } redirect($url, $lang->redirect_forumsubscriptionsremoved); } else { // Naming of the hook retained for backward compatibility while dropping usercp2.php $plugins->run_hooks("usercp2_removesubscriptions_thread"); $db->delete_query("threadsubscriptions", "uid='".$mybb->user['uid']."'"); if($server_http_referer) { $url = $server_http_referer; } else { $url = "usercp.php?action=subscriptions"; } redirect($url, $lang->redirect_subscriptionsremoved); }
} if($mybb->input['action'] == "do_editsig" && $mybb->request_method == "post")	} if($mybb->input['action'] == "do_editsig" && $mybb->request_method == "post")
Zeile 1982	Zeile 2228
// Usergroup has no permission to use this facility error_no_permission(); }	// Usergroup has no permission to use this facility error_no_permission(); }
else if($mybb->usergroup['canusesig'] == 1 && $mybb->usergroup['canusesigxposts'] > 0 && $mybb->user['postnum'] < $mybb->usergroup['canusesigxposts'])	elseif($mybb->usergroup['canusesig'] == 1 && $mybb->usergroup['canusesigxposts'] > 0 && $mybb->user['postnum'] < $mybb->usergroup['canusesigxposts'])
{ // Usergroup can use this facility, but only after x posts error($lang->sprintf($lang->sig_suspended_posts, $mybb->usergroup['canusesigxposts']));	{ // Usergroup can use this facility, but only after x posts error($lang->sprintf($lang->sig_suspended_posts, $mybb->usergroup['canusesigxposts']));
Zeile 2000	Zeile 2246
"filter_badwords" => 1 );	"filter_badwords" => 1 );
if($mybb->user['showimages'] != 1 && $mybb->user['uid'] != 0)	if($mybb->user['showimages'] != 1)
{ $sig_parser['allow_imgcode'] = 0; }	{ $sig_parser['allow_imgcode'] = 0; }
Zeile 2114	Zeile 2360
$db->update_query("users", $updated_avatar, "uid='".$mybb->user['uid']."'"); } }	$db->update_query("users", $updated_avatar, "uid='".$mybb->user['uid']."'"); } }
else // remote avatar	elseif($mybb->settings['allowremoteavatars']) // remote avatar
{ $mybb->input['avatarurl'] = trim($mybb->get_input('avatarurl')); if(validate_email_format($mybb->input['avatarurl']) != false)	{ $mybb->input['avatarurl'] = trim($mybb->get_input('avatarurl')); if(validate_email_format($mybb->input['avatarurl']) != false)
Zeile 2132	Zeile 2378
} // Because Gravatars are square, hijack the width	} // Because Gravatars are square, hijack the width
list($maxwidth, $maxheight) = explode("x", my_strtolower($mybb->settings['maxavatardims']));	list($maxwidth, $maxheight) = preg_split('/[\|x]/', my_strtolower($mybb->settings['maxavatardims']));
$maxheight = (int)$maxwidth; // Rating?	$maxheight = (int)$maxwidth; // Rating?
Zeile 2147	Zeile 2393
$s = "?s={$maxheight}&r={$rating}&d=mm"; $updated_avatar = array(	$s = "?s={$maxheight}&r={$rating}&d=mm"; $updated_avatar = array(
"avatar" => "http://www.gravatar.com/avatar/{$email}{$s}.jpg",	"avatar" => "https://www.gravatar.com/avatar/{$email}{$s}",
"avatardimensions" => "{$maxheight}\|{$maxheight}", "avatartype" => "gravatar" );	"avatardimensions" => "{$maxheight}\|{$maxheight}", "avatartype" => "gravatar" );
Zeile 2190	Zeile 2436
{ if($width && $height && $mybb->settings['maxavatardims'] != "") {	{ if($width && $height && $mybb->settings['maxavatardims'] != "") {
list($maxwidth, $maxheight) = explode("x", my_strtolower($mybb->settings['maxavatardims']));	list($maxwidth, $maxheight) = preg_split('/[\|x]/', my_strtolower($mybb->settings['maxavatardims']));
if(($maxwidth && $width > $maxwidth) \|\| ($maxheight && $height > $maxheight)) { $lang->error_avatartoobig = $lang->sprintf($lang->error_avatartoobig, $maxwidth, $maxheight);	if(($maxwidth && $width > $maxwidth) \|\| ($maxheight && $height > $maxheight)) { $lang->error_avatartoobig = $lang->sprintf($lang->error_avatartoobig, $maxwidth, $maxheight);
Zeile 2214	Zeile 2460
remove_avatars($mybb->user['uid']); } }	remove_avatars($mybb->user['uid']); } }
	} else // remote avatar, but remote avatars are not allowed { $avatar_error = $lang->error_remote_avatar_not_allowed;
} if(empty($avatar_error))	} if(empty($avatar_error))
Zeile 2238	Zeile 2488
{ $avatarmsg = "<br /><strong>".$lang->already_uploaded_avatar."</strong>"; }	{ $avatarmsg = "<br /><strong>".$lang->already_uploaded_avatar."</strong>"; }
elseif($mybb->user['avatartype'] == "remote" \|\| my_strpos(my_strtolower($mybb->user['avatar']), "http://") !== false)	elseif($mybb->user['avatartype'] == "remote" \|\| my_validate_url($mybb->user['avatar']))
{ $avatarmsg = "<br /><strong>".$lang->using_remote_avatar."</strong>"; $avatarurl = htmlspecialchars_uni($mybb->user['avatar']);	{ $avatarmsg = "<br /><strong>".$lang->using_remote_avatar."</strong>"; $avatarurl = htmlspecialchars_uni($mybb->user['avatar']);
Zeile 2249	Zeile 2499
if($mybb->settings['maxavatardims'] != "") {	if($mybb->settings['maxavatardims'] != "") {
list($maxwidth, $maxheight) = explode("x", my_strtolower($mybb->settings['maxavatardims']));	list($maxwidth, $maxheight) = preg_split('/[\|x]/', my_strtolower($mybb->settings['maxavatardims']));
$lang->avatar_note .= "<br />".$lang->sprintf($lang->avatar_note_dimensions, $maxwidth, $maxheight); }	$lang->avatar_note .= "<br />".$lang->sprintf($lang->avatar_note_dimensions, $maxwidth, $maxheight); }
Zeile 2258	Zeile 2508
$maxsize = get_friendly_size($mybb->settings['avatarsize']*1024); $lang->avatar_note .= "<br />".$lang->sprintf($lang->avatar_note_size, $maxsize); }	$maxsize = get_friendly_size($mybb->settings['avatarsize']*1024); $lang->avatar_note .= "<br />".$lang->sprintf($lang->avatar_note_size, $maxsize); }
	$plugins->run_hooks("usercp_avatar_intermediate");
$auto_resize = ''; if($mybb->settings['avatarresizing'] == "auto") { eval("\$auto_resize = \"".$templates->get("usercp_avatar_auto_resize_auto")."\";");	$auto_resize = ''; if($mybb->settings['avatarresizing'] == "auto") { eval("\$auto_resize = \"".$templates->get("usercp_avatar_auto_resize_auto")."\";");
} else if($mybb->settings['avatarresizing'] == "user")	} elseif($mybb->settings['avatarresizing'] == "user")
{ eval("\$auto_resize = \"".$templates->get("usercp_avatar_auto_resize_user")."\";");	{ eval("\$auto_resize = \"".$templates->get("usercp_avatar_auto_resize_user")."\";");
}	}
$avatarupload = ''; if($mybb->usergroup['canuploadavatars'] == 1) { eval("\$avatarupload = \"".$templates->get("usercp_avatar_upload")."\";");	$avatarupload = ''; if($mybb->usergroup['canuploadavatars'] == 1) { eval("\$avatarupload = \"".$templates->get("usercp_avatar_upload")."\";");
}	} $avatar_remote = ''; if($mybb->settings['allowremoteavatars'] == 1) { eval("\$avatar_remote = \"".$templates->get("usercp_avatar_remote")."\";"); }
$removeavatar = ''; if(!empty($mybb->user['avatar']))	$removeavatar = ''; if(!empty($mybb->user['avatar']))
{	{
eval("\$removeavatar = \"".$templates->get("usercp_avatar_remove")."\";");	eval("\$removeavatar = \"".$templates->get("usercp_avatar_remove")."\";");
} $plugins->run_hooks("usercp_avatar_end");	} $plugins->run_hooks("usercp_avatar_end");
if(!isset($avatar_error)) { $avatar_error = '';	if(!isset($avatar_error)) { $avatar_error = '';
Zeile 2293	Zeile 2551
} if($mybb->input['action'] == "acceptrequest")	} if($mybb->input['action'] == "acceptrequest")
{ // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));	{ // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));
// Validate request $query = $db->simple_select('buddyrequests', '*', 'id='.$mybb->get_input('id', MyBB::INPUT_INT).' AND touid='.(int)$mybb->user['uid']);	// Validate request $query = $db->simple_select('buddyrequests', '*', 'id='.$mybb->get_input('id', MyBB::INPUT_INT).' AND touid='.(int)$mybb->user['uid']);
Zeile 2304	Zeile 2562
{ error($lang->invalid_request); }	{ error($lang->invalid_request); }

$plugins->run_hooks("usercp_acceptrequest_start");	$plugins->run_hooks("usercp_acceptrequest_start");

$user = get_user($request['uid']); if(!empty($user)) {	$user = get_user($request['uid']); if(!empty($user)) {
Zeile 2316	Zeile 2574
$user['buddylist'] = explode(',', $user['buddylist']); } else	$user['buddylist'] = explode(',', $user['buddylist']); } else
{	{
$user['buddylist'] = array(); }	$user['buddylist'] = array(); }

$user['buddylist'][] = (int)$mybb->user['uid'];	$user['buddylist'][] = (int)$mybb->user['uid'];

// Now we have the new list, so throw it all back together $new_list = implode(",", $user['buddylist']);	// Now we have the new list, so throw it all back together $new_list = implode(",", $user['buddylist']);
Zeile 2332	Zeile 2590
if(my_substr($new_list, 0, 1) == ",") { $new_list = my_substr($new_list, 1);	if(my_substr($new_list, 0, 1) == ",") { $new_list = my_substr($new_list, 1);
}	}
if(my_substr($new_list, -1) == ",") { $new_list = my_substr($new_list, 0, my_strlen($new_list)-2); }	if(my_substr($new_list, -1) == ",") { $new_list = my_substr($new_list, 0, my_strlen($new_list)-2); }

$user['buddylist'] = $db->escape_string($new_list);	$user['buddylist'] = $db->escape_string($new_list);

$db->update_query("users", array('buddylist' => $user['buddylist']), "uid='".(int)$user['uid']."'");	$db->update_query("users", array('buddylist' => $user['buddylist']), "uid='".(int)$user['uid']."'");

// We want to add the user to our buddy list if($mybb->user['buddylist'] != '') {	// We want to add the user to our buddy list if($mybb->user['buddylist'] != '') {
Zeile 2351	Zeile 2609
else { $mybb->user['buddylist'] = array();	else { $mybb->user['buddylist'] = array();
}	}
$mybb->user['buddylist'][] = (int)$request['uid'];	$mybb->user['buddylist'][] = (int)$request['uid'];

// Now we have the new list, so throw it all back together $new_list = implode(",", $mybb->user['buddylist']);	// Now we have the new list, so throw it all back together $new_list = implode(",", $mybb->user['buddylist']);
Zeile 2363	Zeile 2621
$new_list = preg_replace("#[^0-9,]#", "", $new_list); if(my_substr($new_list, 0, 1) == ",")	$new_list = preg_replace("#[^0-9,]#", "", $new_list); if(my_substr($new_list, 0, 1) == ",")
{	{
$new_list = my_substr($new_list, 1); } if(my_substr($new_list, -1) == ",") { $new_list = my_substr($new_list, 0, my_strlen($new_list)-2); }	$new_list = my_substr($new_list, 1); } if(my_substr($new_list, -1) == ",") { $new_list = my_substr($new_list, 0, my_strlen($new_list)-2); }

$mybb->user['buddylist'] = $db->escape_string($new_list);	$mybb->user['buddylist'] = $db->escape_string($new_list);

$db->update_query("users", array('buddylist' => $mybb->user['buddylist']), "uid='".(int)$mybb->user['uid']."'");	$db->update_query("users", array('buddylist' => $mybb->user['buddylist']), "uid='".(int)$mybb->user['uid']."'");

$pm = array( 'subject' => 'buddyrequest_accepted_request', 'message' => 'buddyrequest_accepted_request_message',	$pm = array( 'subject' => 'buddyrequest_accepted_request', 'message' => 'buddyrequest_accepted_request_message',
Zeile 2382	Zeile 2640
'language' => $user['language'], 'language_file' => 'usercp' );	'language' => $user['language'], 'language_file' => 'usercp' );

send_pm($pm, $mybb->user['uid'], true);	send_pm($pm, $mybb->user['uid'], true);
$db->delete_query('buddyrequests', 'id='.(int)$request['id']); } else	$db->delete_query('buddyrequests', 'id='.(int)$request['id']); } else
{ error($lang->user_doesnt_exist); }	{ error($lang->user_doesnt_exist); }

$plugins->run_hooks("usercp_acceptrequest_end");	$plugins->run_hooks("usercp_acceptrequest_end");

redirect("usercp.php?action=editlists", $lang->buddyrequest_accepted); }	redirect("usercp.php?action=editlists", $lang->buddyrequest_accepted); }

elseif($mybb->input['action'] == "declinerequest")	elseif($mybb->input['action'] == "declinerequest")
{ // Verify incoming POST request	{ // Verify incoming POST request
verify_post_check($mybb->get_input('my_post_key'));	verify_post_check($mybb->get_input('my_post_key'));

// Validate request $query = $db->simple_select('buddyrequests', '*', 'id='.$mybb->get_input('id', MyBB::INPUT_INT).' AND touid='.(int)$mybb->user['uid']); $request = $db->fetch_array($query);	// Validate request $query = $db->simple_select('buddyrequests', '*', 'id='.$mybb->get_input('id', MyBB::INPUT_INT).' AND touid='.(int)$mybb->user['uid']); $request = $db->fetch_array($query);
Zeile 2408	Zeile 2667
{ error($lang->invalid_request); }	{ error($lang->invalid_request); }

$plugins->run_hooks("usercp_declinerequest_start");	$plugins->run_hooks("usercp_declinerequest_start");

$user = get_user($request['uid']); if(!empty($user)) {	$user = get_user($request['uid']); if(!empty($user)) {
Zeile 2422	Zeile 2681
} $plugins->run_hooks("usercp_declinerequest_end");	} $plugins->run_hooks("usercp_declinerequest_end");

redirect("usercp.php?action=editlists", $lang->buddyrequest_declined); }	redirect("usercp.php?action=editlists", $lang->buddyrequest_declined); }

elseif($mybb->input['action'] == "cancelrequest") { // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));	elseif($mybb->input['action'] == "cancelrequest") { // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));

// Validate request $query = $db->simple_select('buddyrequests', '*', 'id='.$mybb->get_input('id', MyBB::INPUT_INT).' AND uid='.(int)$mybb->user['uid']); $request = $db->fetch_array($query);	// Validate request $query = $db->simple_select('buddyrequests', '*', 'id='.$mybb->get_input('id', MyBB::INPUT_INT).' AND uid='.(int)$mybb->user['uid']); $request = $db->fetch_array($query);
Zeile 2437	Zeile 2697
{ error($lang->invalid_request); }	{ error($lang->invalid_request); }

$plugins->run_hooks("usercp_cancelrequest_start");	$plugins->run_hooks("usercp_cancelrequest_start");

$db->delete_query('buddyrequests', 'id='.(int)$request['id']);	$db->delete_query('buddyrequests', 'id='.(int)$request['id']);

$plugins->run_hooks("usercp_cancelrequest_end");	$plugins->run_hooks("usercp_cancelrequest_end");

redirect("usercp.php?action=editlists", $lang->buddyrequest_cancelled); }	redirect("usercp.php?action=editlists", $lang->buddyrequest_cancelled); }
Zeile 2453	Zeile 2713
verify_post_check($mybb->get_input('my_post_key')); $plugins->run_hooks("usercp_do_editlists_start");	verify_post_check($mybb->get_input('my_post_key')); $plugins->run_hooks("usercp_do_editlists_start");

$existing_users = array(); $selected_list = array(); if($mybb->get_input('manage') == "ignored")	$existing_users = array(); $selected_list = array(); if($mybb->get_input('manage') == "ignored")
{	{
if($mybb->user['ignorelist']) { $existing_users = explode(",", $mybb->user['ignorelist']);	if($mybb->user['ignorelist']) { $existing_users = explode(",", $mybb->user['ignorelist']);
}	}
if($mybb->user['buddylist']) {	if($mybb->user['buddylist']) {
Zeile 2474	Zeile 2734
if($mybb->user['buddylist']) { $existing_users = explode(",", $mybb->user['buddylist']);	if($mybb->user['buddylist']) { $existing_users = explode(",", $mybb->user['buddylist']);
}	}
if($mybb->user['ignorelist']) {	if($mybb->user['ignorelist']) {
Zeile 2498	Zeile 2758
foreach($users as $key => $username) { if(empty($username))	foreach($users as $key => $username) { if(empty($username))
{ unset($users[$key]); continue; }	{ unset($users[$key]); continue; }
if(my_strtoupper($mybb->user['username']) == my_strtoupper($username)) {	if(my_strtoupper($mybb->user['username']) == my_strtoupper($username)) {
Zeile 2511	Zeile 2771
} $users[$key] = $db->escape_string($username); }	} $users[$key] = $db->escape_string($username); }

// Get the requests we have sent that are still pending $query = $db->simple_select('buddyrequests', 'touid', 'uid='.(int)$mybb->user['uid']); $requests = array();	// Get the requests we have sent that are still pending $query = $db->simple_select('buddyrequests', 'touid', 'uid='.(int)$mybb->user['uid']); $requests = array();
Zeile 2519	Zeile 2779
{ $requests[$req['touid']] = true; }	{ $requests[$req['touid']] = true; }

// Get the requests we have received that are still pending $query = $db->simple_select('buddyrequests', 'uid', 'touid='.(int)$mybb->user['uid']); $requests_rec = array(); while($req = $db->fetch_array($query))	// Get the requests we have received that are still pending $query = $db->simple_select('buddyrequests', 'uid', 'touid='.(int)$mybb->user['uid']); $requests_rec = array(); while($req = $db->fetch_array($query))
{	{
$requests_rec[$req['uid']] = true; }	$requests_rec[$req['uid']] = true; }
$sent = false;	$sent = false;
// Fetch out new users if(count($users) > 0)	// Fetch out new users if(count($users) > 0)
Zeile 2554	Zeile 2814
if($mybb->get_input('manage') == "ignored") { $error_message = "ignore";	if($mybb->get_input('manage') == "ignored") { $error_message = "ignore";
}	}
else { $error_message = "buddy";	else { $error_message = "buddy";
Zeile 2568	Zeile 2828
} $error_message = $lang->$string;	} $error_message = $lang->$string;
array_pop($users); // To maintain a proper count when we call count($users) continue;	array_pop($users); // To maintain a proper count when we call count($users) continue;
} if(isset($requests[$user['uid']]))	} if(isset($requests[$user['uid']]))
Zeile 2581	Zeile 2841
elseif($mybb->get_input('manage') == "ignored") { $error_message = $lang->users_already_sent_request_alt;	elseif($mybb->get_input('manage') == "ignored") { $error_message = $lang->users_already_sent_request_alt;
} array_pop($users); // To maintain a proper count when we call count($users) continue;	} array_pop($users); // To maintain a proper count when we call count($users) continue;
}	}

if(isset($requests_rec[$user['uid']])) { if($mybb->get_input('manage') != "ignored")	if(isset($requests_rec[$user['uid']])) { if($mybb->get_input('manage') != "ignored")
Zeile 2597	Zeile 2857
{ $error_message = $lang->users_already_rec_request_alt; }	{ $error_message = $lang->users_already_rec_request_alt; }

array_pop($users); // To maintain a proper count when we call count($users) continue; }	array_pop($users); // To maintain a proper count when we call count($users) continue; }
Zeile 2606	Zeile 2866
if($user['buddyrequestsauto'] == 1 && $mybb->get_input('manage') != "ignored") { $existing_users[] = $user['uid'];	if($user['buddyrequestsauto'] == 1 && $mybb->get_input('manage') != "ignored") { $existing_users[] = $user['uid'];

$pm = array( 'subject' => 'buddyrequest_new_buddy', 'message' => 'buddyrequest_new_buddy_message',	$pm = array( 'subject' => 'buddyrequest_new_buddy', 'message' => 'buddyrequest_new_buddy_message',
Zeile 2615	Zeile 2875
'language' => $user['language'], 'language_file' => 'usercp' );	'language' => $user['language'], 'language_file' => 'usercp' );

send_pm($pm); } elseif($user['buddyrequestsauto'] != 1 && $mybb->get_input('manage') != "ignored") { // Send request $id = $db->insert_query('buddyrequests', array('uid' => (int)$mybb->user['uid'], 'touid' => (int)$user['uid'], 'date' => TIME_NOW));	send_pm($pm); } elseif($user['buddyrequestsauto'] != 1 && $mybb->get_input('manage') != "ignored") { // Send request $id = $db->insert_query('buddyrequests', array('uid' => (int)$mybb->user['uid'], 'touid' => (int)$user['uid'], 'date' => TIME_NOW));

$pm = array( 'subject' => 'buddyrequest_received', 'message' => 'buddyrequest_received_message',	$pm = array( 'subject' => 'buddyrequest_received', 'message' => 'buddyrequest_received_message',
Zeile 2631	Zeile 2891
'language' => $user['language'], 'language_file' => 'usercp' );	'language' => $user['language'], 'language_file' => 'usercp' );

send_pm($pm);	send_pm($pm);

$sent = true; } elseif($mybb->get_input('manage') == "ignored")	$sent = true; } elseif($mybb->get_input('manage') == "ignored")
Zeile 2651	Zeile 2911
} $error_message .= $lang->invalid_user_selected;	} $error_message .= $lang->invalid_user_selected;
}	}
if(($adding_self != true \|\| ($adding_self == true && count($users) > 0)) && ($error_message == "" \|\| count($users) > 1)) { if($mybb->get_input('manage') == "ignored") { $message = $lang->users_added_to_ignore_list;	if(($adding_self != true \|\| ($adding_self == true && count($users) > 0)) && ($error_message == "" \|\| count($users) > 1)) { if($mybb->get_input('manage') == "ignored") { $message = $lang->users_added_to_ignore_list;
} else	} else
{ $message = $lang->users_added_to_buddy_list; } } if($adding_self == true)	{ $message = $lang->users_added_to_buddy_list; } } if($adding_self == true)
{	{
if($mybb->get_input('manage') == "ignored") { $error_message = $lang->cant_add_self_to_ignore_list;	if($mybb->get_input('manage') == "ignored") { $error_message = $lang->cant_add_self_to_ignore_list;
Zeile 2680	Zeile 2940
if(count($existing_users) == 0) { $message = "";	if(count($existing_users) == 0) { $message = "";

if($sent === true) { $message = $lang->buddyrequests_sent_success;	if($sent === true) { $message = $lang->buddyrequests_sent_success;
Zeile 2689	Zeile 2949
} // Removing a user from this list	} // Removing a user from this list
else if($mybb->get_input('delete', MyBB::INPUT_INT))	elseif($mybb->get_input('delete', MyBB::INPUT_INT))
{ // Check if user exists on the list $key = array_search($mybb->get_input('delete', MyBB::INPUT_INT), $existing_users);	{ // Check if user exists on the list $key = array_search($mybb->get_input('delete', MyBB::INPUT_INT), $existing_users);
Zeile 2708	Zeile 2968
{ $user['buddylist'] = array(); }	{ $user['buddylist'] = array(); }

$key = array_search($mybb->get_input('delete', MyBB::INPUT_INT), $user['buddylist']); unset($user['buddylist'][$key]);	$key = array_search($mybb->get_input('delete', MyBB::INPUT_INT), $user['buddylist']); unset($user['buddylist'][$key]);

// Now we have the new list, so throw it all back together $new_list = implode(",", $user['buddylist']); // And clean it up a little to ensure there is no possibility of bad values $new_list = preg_replace("#,{2,}#", ",", $new_list); $new_list = preg_replace("#[^0-9,]#", "", $new_list);	// Now we have the new list, so throw it all back together $new_list = implode(",", $user['buddylist']); // And clean it up a little to ensure there is no possibility of bad values $new_list = preg_replace("#,{2,}#", ",", $new_list); $new_list = preg_replace("#[^0-9,]#", "", $new_list);

if(my_substr($new_list, 0, 1) == ",") { $new_list = my_substr($new_list, 1);	if(my_substr($new_list, 0, 1) == ",") { $new_list = my_substr($new_list, 1);
Zeile 2727	Zeile 2987
{ $new_list = my_substr($new_list, 0, my_strlen($new_list)-2); }	{ $new_list = my_substr($new_list, 0, my_strlen($new_list)-2); }

$user['buddylist'] = $db->escape_string($new_list);	$user['buddylist'] = $db->escape_string($new_list);

$db->update_query("users", array('buddylist' => $user['buddylist']), "uid='".(int)$user['uid']."'"); }	$db->update_query("users", array('buddylist' => $user['buddylist']), "uid='".(int)$user['uid']."'"); }

if($mybb->get_input('manage') == "ignored") { $message = $lang->removed_from_ignore_list;	if($mybb->get_input('manage') == "ignored") { $message = $lang->removed_from_ignore_list;
Zeile 2740	Zeile 3000
else { $message = $lang->removed_from_buddy_list;	else { $message = $lang->removed_from_buddy_list;
}	} $user['username'] = htmlspecialchars_uni($user['username']);
$message = $lang->sprintf($message, $user['username']); } }	$message = $lang->sprintf($message, $user['username']); } }
Zeile 2793	Zeile 3054
$message_js = ''; if($message) {	$message_js = ''; if($message) {
$message_js = "$.jGrowl('{$message}');";	$message_js = "$.jGrowl('{$message}', {theme:'jgrowl_success'});";
} if($error_message) {	} if($error_message) {
$message_js .= " $.jGrowl('{$error_message}');";	$message_js .= " $.jGrowl('{$error_message}', {theme:'jgrowl_error'});";
} if($mybb->get_input('delete', MyBB::INPUT_INT))	} if($mybb->get_input('delete', MyBB::INPUT_INT))
Zeile 2808	Zeile 3069
if($new_list == "") { echo "\$(\"#".$mybb->get_input('manage')."_count\").html(\"0\");\n";	if($new_list == "") { echo "\$(\"#".$mybb->get_input('manage')."_count\").html(\"0\");\n";
	echo "\$(\"#buddylink\").remove();\n";
if($mybb->get_input('manage') == "ignored") { echo "\$(\"#ignore_list\").html(\"<li>{$lang->ignore_list_empty}</li>\");\n";	if($mybb->get_input('manage') == "ignored") { echo "\$(\"#ignore_list\").html(\"<li>{$lang->ignore_list_empty}</li>\");\n";
Zeile 2851	Zeile 3114
$query = $db->simple_select("users", "*", "uid IN ({$mybb->user['buddylist']})", array("order_by" => "username")); while($user = $db->fetch_array($query)) {	$query = $db->simple_select("users", "*", "uid IN ({$mybb->user['buddylist']})", array("order_by" => "username")); while($user = $db->fetch_array($query)) {
	$user['username'] = htmlspecialchars_uni($user['username']);
$profile_link = build_profile_link(format_name($user['username'], $user['usergroup'], $user['displaygroup']), $user['uid']); if($user['lastactive'] > $timecut && ($user['invisible'] == 0 \|\| $mybb->usergroup['canviewwolinvis'] == 1) && $user['lastvisit'] != $user['lastactive']) {	$profile_link = build_profile_link(format_name($user['username'], $user['usergroup'], $user['displaygroup']), $user['uid']); if($user['lastactive'] > $timecut && ($user['invisible'] == 0 \|\| $mybb->usergroup['canviewwolinvis'] == 1) && $user['lastvisit'] != $user['lastactive']) {
Zeile 2880	Zeile 3144
$query = $db->simple_select("users", "*", "uid IN ({$mybb->user['ignorelist']})", array("order_by" => "username")); while($user = $db->fetch_array($query)) {	$query = $db->simple_select("users", "*", "uid IN ({$mybb->user['ignorelist']})", array("order_by" => "username")); while($user = $db->fetch_array($query)) {
	$user['username'] = htmlspecialchars_uni($user['username']);
$profile_link = build_profile_link(format_name($user['username'], $user['usergroup'], $user['displaygroup']), $user['uid']); if($user['lastactive'] > $timecut && ($user['invisible'] == 0 \|\| $mybb->usergroup['canviewwolinvis'] == 1) && $user['lastvisit'] != $user['lastactive']) {	$profile_link = build_profile_link(format_name($user['username'], $user['usergroup'], $user['displaygroup']), $user['uid']); if($user['lastactive'] > $timecut && ($user['invisible'] == 0 \|\| $mybb->usergroup['canviewwolinvis'] == 1) && $user['lastvisit'] != $user['lastactive']) {
Zeile 2923	Zeile 3188
{ $bgcolor = alt_trow(); $request['username'] = build_profile_link(htmlspecialchars_uni($request['username']), (int)$request['touid']);	{ $bgcolor = alt_trow(); $request['username'] = build_profile_link(htmlspecialchars_uni($request['username']), (int)$request['touid']);
$request['date'] = my_date($mybb->settings['dateformat'], $request['date'])." ".my_date($mybb->settings['timeformat'], $request['date']);	$request['date'] = my_date('relative', $request['date']);
eval("\$sent_rows .= \"".$templates->get("usercp_editlists_sent_request", 1, 0)."\";"); }	eval("\$sent_rows .= \"".$templates->get("usercp_editlists_sent_request", 1, 0)."\";"); }

if($sent_rows == '') { eval("\$sent_rows = \"".$templates->get("usercp_editlists_no_requests", 1, 0)."\";"); }	if($sent_rows == '') { eval("\$sent_rows = \"".$templates->get("usercp_editlists_no_requests", 1, 0)."\";"); }

eval("\$sent_requests = \"".$templates->get("usercp_editlists_sent_requests", 1, 0)."\";");	eval("\$sent_requests = \"".$templates->get("usercp_editlists_sent_requests", 1, 0)."\";");

echo $sentrequests; echo $sent_requests."<script type=\"text/javascript\">{$message_js}</script>"; }	echo $sentrequests; echo $sent_requests."<script type=\"text/javascript\">{$message_js}</script>"; }
Zeile 2944	Zeile 3209
} } exit;	} } exit;
}	}
$received_rows = ''; $query = $db->query(" SELECT r.*, u.username	$received_rows = ''; $query = $db->query(" SELECT r.*, u.username
Zeile 2957	Zeile 3222
{ $bgcolor = alt_trow(); $request['username'] = build_profile_link(htmlspecialchars_uni($request['username']), (int)$request['uid']);	{ $bgcolor = alt_trow(); $request['username'] = build_profile_link(htmlspecialchars_uni($request['username']), (int)$request['uid']);
$request['date'] = my_date($mybb->settings['dateformat'], $request['date'])." ".my_date($mybb->settings['timeformat'], $request['date']);	$request['date'] = my_date('relative', $request['date']);
eval("\$received_rows .= \"".$templates->get("usercp_editlists_received_request")."\";");	eval("\$received_rows .= \"".$templates->get("usercp_editlists_received_request")."\";");
}	}
if($received_rows == '') { eval("\$received_rows = \"".$templates->get("usercp_editlists_no_requests")."\";"); }	if($received_rows == '') { eval("\$received_rows = \"".$templates->get("usercp_editlists_no_requests")."\";"); }

eval("\$received_requests = \"".$templates->get("usercp_editlists_received_requests")."\";");	eval("\$received_requests = \"".$templates->get("usercp_editlists_received_requests")."\";");

$sent_rows = ''; $query = $db->query(" SELECT r.*, u.username FROM ".TABLE_PREFIX."buddyrequests r LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid=r.touid) WHERE r.uid=".(int)$mybb->user['uid']);	$sent_rows = ''; $query = $db->query(" SELECT r.*, u.username FROM ".TABLE_PREFIX."buddyrequests r LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid=r.touid) WHERE r.uid=".(int)$mybb->user['uid']);

while($request = $db->fetch_array($query)) { $bgcolor = alt_trow(); $request['username'] = build_profile_link(htmlspecialchars_uni($request['username']), (int)$request['touid']);	while($request = $db->fetch_array($query)) { $bgcolor = alt_trow(); $request['username'] = build_profile_link(htmlspecialchars_uni($request['username']), (int)$request['touid']);
$request['date'] = my_date($mybb->settings['dateformat'], $request['date'])." ".my_date($mybb->settings['timeformat'], $request['date']);	$request['date'] = my_date('relative', $request['date']);
eval("\$sent_rows .= \"".$templates->get("usercp_editlists_sent_request")."\";"); }	eval("\$sent_rows .= \"".$templates->get("usercp_editlists_sent_request")."\";"); }

if($sent_rows == '') { eval("\$sent_rows = \"".$templates->get("usercp_editlists_no_requests")."\";"); }	if($sent_rows == '') { eval("\$sent_rows = \"".$templates->get("usercp_editlists_no_requests")."\";"); }

eval("\$sent_requests = \"".$templates->get("usercp_editlists_sent_requests")."\";");	eval("\$sent_requests = \"".$templates->get("usercp_editlists_sent_requests")."\";");

$plugins->run_hooks("usercp_editlists_end"); eval("\$listpage = \"".$templates->get("usercp_editlists")."\";");	$plugins->run_hooks("usercp_editlists_end"); eval("\$listpage = \"".$templates->get("usercp_editlists")."\";");
Zeile 3008	Zeile 3273
// Show a listing of all of the current 'draft' posts or threads the user has. if($draftcount)	// Show a listing of all of the current 'draft' posts or threads the user has. if($draftcount)
{	{
$query = $db->query(" SELECT p.subject, p.pid, t.tid, t.subject AS threadsubject, t.fid, f.name AS forumname, p.dateline, t.visible AS threadvisible, p.visible AS postvisible FROM ".TABLE_PREFIX."posts p	$query = $db->query(" SELECT p.subject, p.pid, t.tid, t.subject AS threadsubject, t.fid, f.name AS forumname, p.dateline, t.visible AS threadvisible, p.visible AS postvisible FROM ".TABLE_PREFIX."posts p
Zeile 3044	Zeile 3309
$draft['subject'] = htmlspecialchars_uni($draft['subject']); $savedate = my_date('relative', $draft['dateline']); eval("\$drafts .= \"".$templates->get("usercp_drafts_draft")."\";");	$draft['subject'] = htmlspecialchars_uni($draft['subject']); $savedate = my_date('relative', $draft['dateline']); eval("\$drafts .= \"".$templates->get("usercp_drafts_draft")."\";");
} } else {	} } else {
$disable_delete_drafts = 'disabled="disabled"'; eval("\$drafts = \"".$templates->get("usercp_drafts_none")."\";"); }	$disable_delete_drafts = 'disabled="disabled"'; eval("\$drafts = \"".$templates->get("usercp_drafts_none")."\";"); }
Zeile 3076	Zeile 3341
if($val == "post") { $pidin[] = "'".(int)$id."'";	if($val == "post") { $pidin[] = "'".(int)$id."'";
}	}
elseif($val == "thread") { $tidin[] = "'".(int)$id."'";	elseif($val == "thread") { $tidin[] = "'".(int)$id."'";
Zeile 3104	Zeile 3369
} $plugins->run_hooks("usercp_do_drafts_end"); redirect("usercp.php?action=drafts", $lang->selected_drafts_deleted);	} $plugins->run_hooks("usercp_do_drafts_end"); redirect("usercp.php?action=drafts", $lang->selected_drafts_deleted);
}	}
if($mybb->input['action'] == "usergroups") { $plugins->run_hooks("usercp_usergroups_start"); $ingroups = ",".$mybb->user['usergroup'].",".$mybb->user['additionalgroups'].",".$mybb->user['displaygroup'].",";	if($mybb->input['action'] == "usergroups") { $plugins->run_hooks("usercp_usergroups_start"); $ingroups = ",".$mybb->user['usergroup'].",".$mybb->user['additionalgroups'].",".$mybb->user['displaygroup'].",";

$usergroups = $mybb->cache->read('usergroups'); // Changing our display group	$usergroups = $mybb->cache->read('usergroups'); // Changing our display group
Zeile 3145	Zeile 3410
if(my_strpos($ingroups, ",".$mybb->get_input('leavegroup', MyBB::INPUT_INT).",") === false) { error($lang->not_member_of_group);	if(my_strpos($ingroups, ",".$mybb->get_input('leavegroup', MyBB::INPUT_INT).",") === false) { error($lang->not_member_of_group);
}	}
if($mybb->user['usergroup'] == $mybb->get_input('leavegroup', MyBB::INPUT_INT)) { error($lang->cannot_leave_primary_group);	if($mybb->user['usergroup'] == $mybb->get_input('leavegroup', MyBB::INPUT_INT)) { error($lang->cannot_leave_primary_group);
Zeile 3160	Zeile 3425
$plugins->run_hooks("usercp_usergroups_leave_group"); redirect("usercp.php?action=usergroups", $lang->left_group); exit;	$plugins->run_hooks("usercp_usergroups_leave_group"); redirect("usercp.php?action=usergroups", $lang->left_group); exit;
} $groupleaders = array();	} $groupleaders = array();
// List of usergroup leaders $query = $db->query("	// List of usergroup leaders $query = $db->query("
Zeile 3201	Zeile 3466
$query = $db->simple_select("joinrequests", "*", "uid='".$mybb->user['uid']."' AND gid='".$mybb->get_input('joingroup', MyBB::INPUT_INT)."'"); $joinrequest = $db->fetch_array($query);	$query = $db->simple_select("joinrequests", "*", "uid='".$mybb->user['uid']."' AND gid='".$mybb->get_input('joingroup', MyBB::INPUT_INT)."'"); $joinrequest = $db->fetch_array($query);

if($joinrequest['rid']) { error($lang->already_sent_join_request); }	if($joinrequest['rid']) { error($lang->already_sent_join_request); }

if($mybb->get_input('do') == "joingroup" && $usergroup['type'] == 4) {	if($mybb->get_input('do') == "joingroup" && $usergroup['type'] == 4) {
	$reasonlength = my_strlen($mybb->get_input('reason')); if($reasonlength > 250) // Reason field is varchar(250) in database { error($lang->sprintf($lang->joinreason_too_long, ($reasonlength - 250))); }
$now = TIME_NOW; $joinrequest = array( "uid" => $mybb->user['uid'],	$now = TIME_NOW; $joinrequest = array( "uid" => $mybb->user['uid'],
Zeile 3216	Zeile 3490
); $db->insert_query("joinrequests", $joinrequest);	); $db->insert_query("joinrequests", $joinrequest);
foreach($groupleaders[$usergroup['gid']] as $leader) { // Load language $lang->set_language($leader['language']); $lang->load("messages"); $subject = $lang->sprintf($lang->emailsubject_newjoinrequest, $mybb->settings['bbname']); $message = $lang->sprintf($lang->email_groupleader_joinrequest, $leader['username'], $mybb->user['username'], $usergroup['title'], $mybb->settings['bbname'], $mybb->get_input('reason'), $mybb->settings['bburl'], $leader['gid']); my_mail($leader['email'], $subject, $message); }	if(array_key_exists($usergroup['gid'], $groupleaders)) { foreach($groupleaders[$usergroup['gid']] as $leader) { // Load language $lang->set_language($leader['language']); $lang->load("messages"); $subject = $lang->sprintf($lang->emailsubject_newjoinrequest, $mybb->settings['bbname']); $message = $lang->sprintf($lang->email_groupleader_joinrequest, $leader['username'], $mybb->user['username'], $usergroup['title'], $mybb->settings['bbname'], $mybb->get_input('reason'), $mybb->settings['bburl'], $leader['gid']); my_mail($leader['email'], $subject, $message); } }
// Load language $lang->set_language($mybb->user['language']); $lang->load("messages");	// Load language $lang->set_language($mybb->user['language']); $lang->load("messages");

$plugins->run_hooks("usercp_usergroups_join_group_request"); redirect("usercp.php?action=usergroups", $lang->group_join_requestsent);	$plugins->run_hooks("usercp_usergroups_join_group_request"); redirect("usercp.php?action=usergroups", $lang->group_join_requestsent);
exit; }	exit; }
elseif($usergroup['type'] == 4) { $joingroup = $mybb->get_input('joingroup', MyBB::INPUT_INT); eval("\$joinpage = \"".$templates->get("usercp_usergroups_joingroup")."\";"); output_page($joinpage); exit;	elseif($usergroup['type'] == 4) { $joingroup = $mybb->get_input('joingroup', MyBB::INPUT_INT); eval("\$joinpage = \"".$templates->get("usercp_usergroups_joingroup")."\";"); output_page($joinpage); exit;
}	}
else { join_usergroup($mybb->user['uid'], $mybb->get_input('joingroup', MyBB::INPUT_INT)); $plugins->run_hooks("usercp_usergroups_join_group");	else { join_usergroup($mybb->user['uid'], $mybb->get_input('joingroup', MyBB::INPUT_INT)); $plugins->run_hooks("usercp_usergroups_join_group");
redirect("usercp.php?action=usergroups", $lang->joined_group); } }	redirect("usercp.php?action=usergroups", $lang->joined_group); } }
// Accepting invitation if($mybb->get_input('acceptinvite', MyBB::INPUT_INT)) { // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));	// Accepting invitation if($mybb->get_input('acceptinvite', MyBB::INPUT_INT)) { // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));

$usergroup = $usergroups[$mybb->get_input('acceptinvite', MyBB::INPUT_INT)];	$usergroup = $usergroups[$mybb->get_input('acceptinvite', MyBB::INPUT_INT)];

if(my_strpos($ingroups, ",".$mybb->get_input('acceptinvite', MyBB::INPUT_INT).",") !== false) { error($lang->already_accepted_invite);	if(my_strpos($ingroups, ",".$mybb->get_input('acceptinvite', MyBB::INPUT_INT).",") !== false) { error($lang->already_accepted_invite);
}	}
$query = $db->simple_select("joinrequests", "*", "uid='".$mybb->user['uid']."' AND gid='".$mybb->get_input('acceptinvite', MyBB::INPUT_INT)."' AND invite='1'"); $joinrequest = $db->fetch_array($query); if($joinrequest['rid'])	$query = $db->simple_select("joinrequests", "*", "uid='".$mybb->user['uid']."' AND gid='".$mybb->get_input('acceptinvite', MyBB::INPUT_INT)."' AND invite='1'"); $joinrequest = $db->fetch_array($query); if($joinrequest['rid'])
Zeile 3284	Zeile 3561
$groupsledlist = ''; switch($db->type)	$groupsledlist = ''; switch($db->type)
{	{
case "pgsql": case "sqlite":	case "pgsql": case "sqlite":
$query = $db->query(" SELECT g.title, g.gid, g.type, COUNT(DISTINCT u.uid) AS users, COUNT(DISTINCT j.rid) AS joinrequests, l.canmanagerequests, l.canmanagemembers, l.caninvitemembers FROM ".TABLE_PREFIX."groupleaders l	$query = $db->query(" SELECT g.title, g.gid, g.type, COUNT(DISTINCT u.uid) AS users, COUNT(DISTINCT j.rid) AS joinrequests, l.canmanagerequests, l.canmanagemembers, l.caninvitemembers FROM ".TABLE_PREFIX."groupleaders l
LEFT JOIN ".TABLE_PREFIX."usergroups g ON(g.gid=l.gid) LEFT JOIN ".TABLE_PREFIX."users u ON(((','\|\| u.additionalgroups\|\| ',' LIKE '%,'\|\| g.gid\|\| ',%') OR u.usergroup = g.gid))	LEFT JOIN ".TABLE_PREFIX."usergroups g ON(g.gid=l.gid) LEFT JOIN ".TABLE_PREFIX."users u ON(((','\|\| u.additionalgroups\|\| ',' LIKE '%,'\|\| g.gid\|\| ',%') OR u.usergroup = g.gid))
LEFT JOIN ".TABLE_PREFIX."joinrequests j ON(j.gid=g.gid AND j.uid != 0) WHERE l.uid='".$mybb->user['uid']."' GROUP BY g.gid, g.title, g.type, l.canmanagerequests, l.canmanagemembers, l.caninvitemembers	LEFT JOIN ".TABLE_PREFIX."joinrequests j ON(j.gid=g.gid AND j.uid != 0) WHERE l.uid='".$mybb->user['uid']."' GROUP BY g.gid, g.title, g.type, l.canmanagerequests, l.canmanagemembers, l.caninvitemembers
"); break; default:	"); break; default:
Zeile 3305	Zeile 3582
LEFT JOIN ".TABLE_PREFIX."users u ON(((CONCAT(',', u.additionalgroups, ',') LIKE CONCAT('%,', g.gid, ',%')) OR u.usergroup = g.gid)) LEFT JOIN ".TABLE_PREFIX."joinrequests j ON(j.gid=g.gid AND j.uid != 0) WHERE l.uid='".$mybb->user['uid']."'	LEFT JOIN ".TABLE_PREFIX."users u ON(((CONCAT(',', u.additionalgroups, ',') LIKE CONCAT('%,', g.gid, ',%')) OR u.usergroup = g.gid)) LEFT JOIN ".TABLE_PREFIX."joinrequests j ON(j.gid=g.gid AND j.uid != 0) WHERE l.uid='".$mybb->user['uid']."'
GROUP BY l.gid	GROUP BY g.gid, g.title, g.type, l.canmanagerequests, l.canmanagemembers, l.caninvitemembers
"); }	"); }
Zeile 3400	Zeile 3677
} } eval("\$membergroups = \"".$templates->get("usercp_usergroups_memberof")."\";");	} } eval("\$membergroups = \"".$templates->get("usercp_usergroups_memberof")."\";");

// List of groups this user has applied for but has not been accepted in to $query = $db->simple_select("joinrequests", "*", "uid='".$mybb->user['uid']."'"); while($request = $db->fetch_array($query))	// List of groups this user has applied for but has not been accepted in to $query = $db->simple_select("joinrequests", "*", "uid='".$mybb->user['uid']."'"); while($request = $db->fetch_array($query))
Zeile 3457	Zeile 3734
$joinlink = "--"; } else	$joinlink = "--"; } else
{	{
eval("\$joinlink = \"".$templates->get("usercp_usergroups_joinable_usergroup_join")."\";"); }	eval("\$joinlink = \"".$templates->get("usercp_usergroups_joinable_usergroup_join")."\";"); }
Zeile 3468	Zeile 3745
$usergroupleaders = ''; foreach($groupleaders[$usergroup['gid']] as $leader) {	$usergroupleaders = ''; foreach($groupleaders[$usergroup['gid']] as $leader) {
$leader['username'] = format_name($leader['username'], $leader['usergroup'], $leader['displaygroup']);	$leader['username'] = format_name(htmlspecialchars_uni($leader['username']), $leader['usergroup'], $leader['displaygroup']);
$usergroupleaders .= $comma.build_profile_link($leader['username'], $leader['uid']); $comma = $lang->comma; } $usergroupleaders = $lang->usergroup_leaders." ".$usergroupleaders;	$usergroupleaders .= $comma.build_profile_link($leader['username'], $leader['uid']); $comma = $lang->comma; } $usergroupleaders = $lang->usergroup_leaders." ".$usergroupleaders;
}	}
if(my_strpos($usergroupleaders, $mybb->user['username']) === false) { // User is already a leader of the group, so don't show as a "Join Group" eval("\$joinablegrouplist .= \"".$templates->get("usercp_usergroups_joinable_usergroup")."\";");	if(my_strpos($usergroupleaders, $mybb->user['username']) === false) { // User is already a leader of the group, so don't show as a "Join Group" eval("\$joinablegrouplist .= \"".$templates->get("usercp_usergroups_joinable_usergroup")."\";");
} }	} }
if($joinablegrouplist) { eval("\$joinablegroups = \"".$templates->get("usercp_usergroups_joinable")."\";");	if($joinablegrouplist) { eval("\$joinablegroups = \"".$templates->get("usercp_usergroups_joinable")."\";");
} $plugins->run_hooks("usercp_usergroups_end");	} $plugins->run_hooks("usercp_usergroups_end");
eval("\$groupmemberships = \"".$templates->get("usercp_usergroups")."\";"); output_page($groupmemberships); }	eval("\$groupmemberships = \"".$templates->get("usercp_usergroups")."\";"); output_page($groupmemberships); }
Zeile 3500	Zeile 3777
if($mybb->settings['enableattachments'] == 0) { error($lang->attachments_disabled);	if($mybb->settings['enableattachments'] == 0) { error($lang->attachments_disabled);
}	} // Get unviewable forums $f_perm_sql = ''; $unviewable_forums = get_unviewable_forums(true); $inactiveforums = get_inactive_forums(); if($unviewable_forums) { $f_perm_sql = " AND t.fid NOT IN ($unviewable_forums)"; } if($inactiveforums) { $f_perm_sql .= " AND t.fid NOT IN ($inactiveforums)"; }
$attachments = '';	$attachments = '';
	$query = $db->simple_select("attachments", "SUM(filesize) AS ausage, COUNT(aid) AS acount", "uid='".$mybb->user['uid']."'"); $usage = $db->fetch_array($query); $totalattachments = $usage['acount'];
// Pagination if(!$mybb->settings['threadsperpage'] \|\| (int)$mybb->settings['threadsperpage'] < 1)	// Pagination if(!$mybb->settings['threadsperpage'] \|\| (int)$mybb->settings['threadsperpage'] < 1)
Zeile 3516	Zeile 3810
if($page > 0) { $start = ($page-1) * $perpage;	if($page > 0) { $start = ($page-1) * $perpage;
	$pages = ceil($totalattachments / $perpage); if($page > $pages) { $start = 0; $page = 1; }
} else {	} else {
Zeile 3531	Zeile 3831
FROM ".TABLE_PREFIX."attachments a LEFT JOIN ".TABLE_PREFIX."posts p ON (a.pid=p.pid) LEFT JOIN ".TABLE_PREFIX."threads t ON (t.tid=p.tid)	FROM ".TABLE_PREFIX."attachments a LEFT JOIN ".TABLE_PREFIX."posts p ON (a.pid=p.pid) LEFT JOIN ".TABLE_PREFIX."threads t ON (t.tid=p.tid)
WHERE a.uid='".$mybb->user['uid']."'	WHERE a.uid='".$mybb->user['uid']."' {$f_perm_sql}
ORDER BY p.dateline DESC LIMIT {$start}, {$perpage} ");	ORDER BY p.dateline DESC LIMIT {$start}, {$perpage} ");
Zeile 3566	Zeile 3866
} }	} }
$query = $db->simple_select("attachments", "SUM(filesize) AS ausage, COUNT(aid) AS acount", "uid='".$mybb->user['uid']."'"); $usage = $db->fetch_array($query);
$totalusage = $usage['ausage'];	$totalusage = $usage['ausage'];
$totalattachments = $usage['acount']; $friendlyusage = get_friendly_size($totalusage);	$friendlyusage = get_friendly_size((int)$totalusage);
if($mybb->usergroup['attachquota'])	if($mybb->usergroup['attachquota'])
{ $percent = round(($totalusage/($mybb->usergroup['attachquota']1024))100)."%";	{ $percent = round(($totalusage/($mybb->usergroup['attachquota']1024))100); $friendlyusage .= $lang->sprintf($lang->attachments_usage_percent, $percent);
$attachquota = get_friendly_size($mybb->usergroup['attachquota']*1024);	$attachquota = get_friendly_size($mybb->usergroup['attachquota']*1024);
$usagenote = $lang->sprintf($lang->attachments_usage_quota, $friendlyusage, $attachquota, $percent, $totalattachments);	$usagenote = $lang->sprintf($lang->attachments_usage_quota, $friendlyusage, $attachquota, $totalattachments);
} else {	} else {
$percent = $lang->unlimited;
$attachquota = $lang->unlimited; $usagenote = $lang->sprintf($lang->attachments_usage, $friendlyusage, $totalattachments); }	$attachquota = $lang->unlimited; $usagenote = $lang->sprintf($lang->attachments_usage, $friendlyusage, $totalattachments); }
Zeile 3610	Zeile 3907
{ error($lang->no_attachments_selected); }	{ error($lang->no_attachments_selected); }
	// Get unviewable forums $f_perm_sql = ''; $unviewable_forums = get_unviewable_forums(true); $inactiveforums = get_inactive_forums(); if($unviewable_forums) { $f_perm_sql = " AND p.fid NOT IN ($unviewable_forums)"; } if($inactiveforums) { $f_perm_sql .= " AND p.fid NOT IN ($inactiveforums)"; }
$aids = implode(',', array_map('intval', $mybb->input['attachments']));	$aids = implode(',', array_map('intval', $mybb->input['attachments']));
$query = $db->simple_select("attachments", "*", "aid IN ($aids) AND uid='".$mybb->user['uid']."'");	$query = $db->query(" SELECT a.*, p.fid FROM ".TABLE_PREFIX."attachments a LEFT JOIN ".TABLE_PREFIX."posts p ON (a.pid=p.pid) WHERE aid IN ({$aids}) AND a.uid={$mybb->user['uid']} {$f_perm_sql} ");
while($attachment = $db->fetch_array($query)) { remove_attachment($attachment['pid'], '', $attachment['aid']);	while($attachment = $db->fetch_array($query)) { remove_attachment($attachment['pid'], '', $attachment['aid']);
Zeile 3671	Zeile 3989
$regdate = my_date('relative', $mybb->user['regdate']); $useravatar = format_avatar($mybb->user['avatar'], $mybb->user['avatardimensions'], '100x100');	$regdate = my_date('relative', $mybb->user['regdate']); $useravatar = format_avatar($mybb->user['avatar'], $mybb->user['avatardimensions'], '100x100');
	$avatar_username = htmlspecialchars_uni($mybb->user['username']);
eval("\$avatar = \"".$templates->get("usercp_currentavatar")."\";"); $usergroup = htmlspecialchars_uni($groupscache[$mybb->user['usergroup']]['title']);	eval("\$avatar = \"".$templates->get("usercp_currentavatar")."\";"); $usergroup = htmlspecialchars_uni($groupscache[$mybb->user['usergroup']]['title']);
Zeile 3689	Zeile 4008
$latest_warnings = ''; if($mybb->settings['enablewarningsystem'] != 0 && $mybb->settings['canviewownwarning'] != 0) {	$latest_warnings = ''; if($mybb->settings['enablewarningsystem'] != 0 && $mybb->settings['canviewownwarning'] != 0) {
	if($mybb->settings['maxwarningpoints'] < 1) { $mybb->settings['maxwarningpoints'] = 10; }
$warning_level = round($mybb->user['warningpoints']/$mybb->settings['maxwarningpoints']*100); if($warning_level > 100) { $warning_level = 100;	$warning_level = round($mybb->user['warningpoints']/$mybb->settings['maxwarningpoints']*100); if($warning_level > 100) { $warning_level = 100;
}	}
if($mybb->user['warningpoints'] > $mybb->settings['maxwarningpoints']) { $mybb->user['warningpoints'] = $mybb->settings['maxwarningpoints'];	if($mybb->user['warningpoints'] > $mybb->settings['maxwarningpoints']) { $mybb->user['warningpoints'] = $mybb->settings['maxwarningpoints'];
Zeile 3724	Zeile 4047
{ $post_link = ""; if($warning['post_subject'])	{ $post_link = ""; if($warning['post_subject'])
{	{
$warning['post_subject'] = $parser->parse_badwords($warning['post_subject']); $warning['post_subject'] = htmlspecialchars_uni($warning['post_subject']); $warning['postlink'] = get_post_link($warning['pid']); eval("\$post_link .= \"".$templates->get("usercp_warnings_warning_post")."\";"); }	$warning['post_subject'] = $parser->parse_badwords($warning['post_subject']); $warning['post_subject'] = htmlspecialchars_uni($warning['post_subject']); $warning['postlink'] = get_post_link($warning['pid']); eval("\$post_link .= \"".$templates->get("usercp_warnings_warning_post")."\";"); }
	$warning['username'] = htmlspecialchars_uni($warning['username']);
$issuedby = build_profile_link($warning['username'], $warning['issuedby']); $date_issued = my_date('relative', $warning['dateline']); if($warning['type_title']) { $warning_type = $warning['type_title'];	$issuedby = build_profile_link($warning['username'], $warning['issuedby']); $date_issued = my_date('relative', $warning['dateline']); if($warning['type_title']) { $warning_type = $warning['type_title'];
}	}
else { $warning_type = $warning['title'];	else { $warning_type = $warning['title'];
Zeile 3753	Zeile 4077
$expires = $lang->warning_revoked; } elseif($warning['expired'])	$expires = $lang->warning_revoked; } elseif($warning['expired'])
{	{
$expires = $lang->already_expired; } elseif($warning['expires'] == 0) { $expires = $lang->never;	$expires = $lang->already_expired; } elseif($warning['expires'] == 0) { $expires = $lang->never;
}	}
else {	else {
$expires = my_date('relative', $warning['expires']);	$expires = nice_time($warning['expires']-TIME_NOW);
} $alt_bg = alt_trow();	} $alt_bg = alt_trow();
Zeile 3772	Zeile 4096
{ eval("\$latest_warnings = \"".$templates->get("usercp_warnings")."\";"); }	{ eval("\$latest_warnings = \"".$templates->get("usercp_warnings")."\";"); }
}	}
} // Format username	} // Format username
$username = format_name($mybb->user['username'], $mybb->user['usergroup'], $mybb->user['displaygroup']);	$username = format_name(htmlspecialchars_uni($mybb->user['username']), $mybb->user['usergroup'], $mybb->user['displaygroup']);
$username = build_profile_link($username, $mybb->user['uid']); // Format post numbers	$username = build_profile_link($username, $mybb->user['uid']); // Format post numbers
Zeile 3786	Zeile 4110
if($mybb->settings['usereferrals'] == 1) { $referral_link = $lang->sprintf($lang->referral_link, $settings['bburl'], $mybb->user['uid']);	if($mybb->settings['usereferrals'] == 1) { $referral_link = $lang->sprintf($lang->referral_link, $settings['bburl'], $mybb->user['uid']);
	$referral_count = (int) $mybb->user['referrals']; if($referral_count > 0) { $uid = (int) $mybb->user['uid']; eval("\$mybb->user['referrals'] = \"".$templates->get('member_referrals_link')."\";"); }
eval("\$referral_info = \"".$templates->get("usercp_referrals")."\";"); }	eval("\$referral_info = \"".$templates->get("usercp_referrals")."\";"); }
Zeile 3863	Zeile 4195
foreach($subscriptions as $thread) {	foreach($subscriptions as $thread) {
	$plugins->run_hooks("usercp_thread_subscriptions_thread");
$folder = ''; $folder_label = ''; $gotounread = '';	$folder = ''; $folder_label = ''; $gotounread = '';
Zeile 3928	Zeile 4261
} $lastpostdate = my_date('relative', $thread['lastpost']);	} $lastpostdate = my_date('relative', $thread['lastpost']);
$lastposter = $thread['lastposter'];
$lastposteruid = $thread['lastposteruid'];	$lastposteruid = $thread['lastposteruid'];
	if(!$lastposteruid && !$thread['lastposter']) { $lastposter = htmlspecialchars_uni($lang->guest); } else { $lastposter = htmlspecialchars_uni($thread['lastposter']); }
if($lastposteruid == 0) {	if($lastposteruid == 0) {
Zeile 3942	Zeile 4282
$thread['replies'] = my_number_format($thread['replies']); $thread['views'] = my_number_format($thread['views']);	$thread['replies'] = my_number_format($thread['replies']); $thread['views'] = my_number_format($thread['views']);
	$thread['username'] = htmlspecialchars_uni($thread['username']);
$thread['author'] = build_profile_link($thread['username'], $thread['uid']); eval("\$latest_subscribed_threads .= \"".$templates->get("usercp_latest_subscribed_threads")."\";");	$thread['author'] = build_profile_link($thread['username'], $thread['uid']); eval("\$latest_subscribed_threads .= \"".$templates->get("usercp_latest_subscribed_threads")."\";");
Zeile 4004	Zeile 4345
if(!empty($threadcache)) { $tids = implode(",", array_keys($threadcache));	if(!empty($threadcache)) { $tids = implode(",", array_keys($threadcache));
	$readforums = array();
// Read Forums $query = $db->query("	// Read Forums $query = $db->query("
Zeile 4013	Zeile 4355
WHERE f.active != 0 ORDER BY pid, disporder ");	WHERE f.active != 0 ORDER BY pid, disporder ");

while($forum = $db->fetch_array($query)) { $readforums[$forum['fid']] = $forum['lastread'];	while($forum = $db->fetch_array($query)) { $readforums[$forum['fid']] = $forum['lastread'];
Zeile 4045	Zeile 4388
$latest_threads_threads = ''; foreach($threadcache as $thread) {	$latest_threads_threads = ''; foreach($threadcache as $thread) {
	$plugins->run_hooks("usercp_latest_threads_thread");
if($thread['tid']) { $bgcolor = alt_trow();	if($thread['tid']) { $bgcolor = alt_trow();
Zeile 4161	Zeile 4505
if($thread['closed'] == 1) {	if($thread['closed'] == 1) {
$folder .= "lock"; $folder_label .= $lang->icon_lock;	$folder .= "close"; $folder_label .= $lang->icon_close;
} $folder .= "folder"; $lastpostdate = my_date('relative', $thread['lastpost']);	} $folder .= "folder"; $lastpostdate = my_date('relative', $thread['lastpost']);
$lastposter = $thread['lastposter'];	$lastposter = htmlspecialchars_uni($thread['lastposter']);
$lastposteruid = $thread['lastposteruid']; if($lastposteruid == 0)	$lastposteruid = $thread['lastposteruid']; if($lastposteruid == 0)
Zeile 4182	Zeile 4526
$thread['replies'] = my_number_format($thread['replies']); $thread['views'] = my_number_format($thread['views']);	$thread['replies'] = my_number_format($thread['replies']); $thread['views'] = my_number_format($thread['views']);
	$thread['username'] = htmlspecialchars_uni($thread['username']);
$thread['author'] = build_profile_link($thread['username'], $thread['uid']); eval("\$latest_threads_threads .= \"".$templates->get("usercp_latest_threads_threads")."\";");	$thread['author'] = build_profile_link($thread['username'], $thread['uid']); eval("\$latest_threads_threads .= \"".$templates->get("usercp_latest_threads_threads")."\";");