Vergleich modcp.php - 1.8.6 - 1.8.21

Keine Änderungen Hinzugefügt Modifiziert Entfernt
Zeile 11	Zeile 11
define("IN_MYBB", 1); define('THIS_SCRIPT', 'modcp.php');	define("IN_MYBB", 1); define('THIS_SCRIPT', 'modcp.php');
$templatelist = "modcp_reports,modcp_reports_report,modcp_reports_multipage,modcp_reports_allreport,modcp_reports_allreports,modcp_modlogs_multipage,modcp_announcements_delete,modcp_announcements_edit,modcp_awaitingmoderation,modcp_banuser_bangroups_hidden"; $templatelist .= ",modcp_reports_allnoreports,modcp_reports_noreports,modcp_banning,modcp_banning_ban,modcp_announcements_announcement_global,modcp_no_announcements_forum,modcp_modqueue_threads_thread,modcp_awaitingthreads,modcp_banuser_bangroups"; $templatelist .= ",modcp_banning_nobanned,modcp_modqueue_threads_empty,modcp_modqueue_masscontrols,modcp_modqueue_threads,modcp_modqueue_posts_post,modcp_modqueue_posts_empty,modcp_awaitingposts,modcp_nav_editprofile";	$templatelist = "modcp_reports,modcp_reports_report,modcp_reports_selectall,modcp_reports_multipage,modcp_reports_allreport,modcp_reports_allreports,modcp_modlogs_multipage,modcp_announcements_delete,modcp_announcements_edit,modcp_awaitingmoderation"; $templatelist .= ",modcp_reports_allnoreports,modcp_reports_noreports,modcp_banning,modcp_banning_ban,modcp_announcements_announcement_global,modcp_no_announcements_forum,modcp_modqueue_threads_thread,modcp_awaitingthreads,preview"; $templatelist .= ",modcp_banning_nobanned,modcp_modqueue_threads_empty,modcp_modqueue_masscontrols,modcp_modqueue_threads,modcp_modqueue_posts_post,modcp_modqueue_posts_empty,modcp_awaitingposts,modcp_nav_editprofile,modcp_nav_banning";
$templatelist .= ",modcp_nav,modcp_modlogs_noresults,modcp_modlogs_nologs,modcp,modcp_modqueue_posts,modcp_modqueue_attachments_attachment,modcp_modqueue_attachments_empty,modcp_modqueue_attachments,modcp_editprofile_suspensions_info"; $templatelist .= ",modcp_no_announcements_global,modcp_announcements_global,modcp_announcements_forum,modcp_announcements,modcp_editprofile_select_option,modcp_editprofile_select,modcp_finduser_noresults, modcp_nav_forums_posts";	$templatelist .= ",modcp_nav,modcp_modlogs_noresults,modcp_modlogs_nologs,modcp,modcp_modqueue_posts,modcp_modqueue_attachments_attachment,modcp_modqueue_attachments_empty,modcp_modqueue_attachments,modcp_editprofile_suspensions_info"; $templatelist .= ",modcp_no_announcements_global,modcp_announcements_global,modcp_announcements_forum,modcp_announcements,modcp_editprofile_select_option,modcp_editprofile_select,modcp_finduser_noresults, modcp_nav_forums_posts";
$templatelist .= ",codebuttons,smilieinsert,modcp_announcements_new,modcp_modqueue_empty,forumjump_bit,forumjump_special,modcp_warninglogs_warning_revoked,modcp_warninglogs_warning,modcp_ipsearch_result,modcp_nav_modqueue,modcp_banuser_liftlist";	$templatelist .= ",codebuttons,modcp_announcements_new,modcp_modqueue_empty,forumjump_bit,forumjump_special,modcp_warninglogs_warning_revoked,modcp_warninglogs_warning,modcp_ipsearch_result,modcp_nav_modqueue,modcp_banuser_liftlist";
$templatelist .= ",modcp_modlogs,modcp_finduser_user,modcp_finduser,usercp_profile_customfield,usercp_profile_profilefields,modcp_ipsearch_noresults,modcp_ipsearch_results,modcp_ipsearch_misc_info,modcp_nav_announcements,modcp_modqueue_post_link"; $templatelist .= ",modcp_editprofile,modcp_ipsearch,modcp_banuser_addusername,modcp_banuser,modcp_warninglogs_nologs,modcp_banuser_editusername,modcp_lastattachment,modcp_lastpost,modcp_lastthread,modcp_nobanned,modcp_modqueue_thread_link";	$templatelist .= ",modcp_modlogs,modcp_finduser_user,modcp_finduser,usercp_profile_customfield,usercp_profile_profilefields,modcp_ipsearch_noresults,modcp_ipsearch_results,modcp_ipsearch_misc_info,modcp_nav_announcements,modcp_modqueue_post_link"; $templatelist .= ",modcp_editprofile,modcp_ipsearch,modcp_banuser_addusername,modcp_banuser,modcp_warninglogs_nologs,modcp_banuser_editusername,modcp_lastattachment,modcp_lastpost,modcp_lastthread,modcp_nobanned,modcp_modqueue_thread_link";
$templatelist .= ",modcp_warninglogs,modcp_modlogs_result,modcp_editprofile_signature,forumjump_advanced,smilieinsert_getmore,smilieinsert_smilie,smilieinsert_smilie_empty,modcp_announcements_forum_nomod,modcp_announcements_announcement"; $templatelist .= ",multipage,multipage_end,multipage_jump_page,multipage_nextpage,multipage_page,multipage_page_current,multipage_page_link_current,multipage_prevpage,multipage_start,modcp_editprofile_away,modcp_awaitingattachments,modcp_modqueue_attachment_link,modcp_latestfivemodactions,modcp_nav_banning"; $templatelist .= ",postbit_groupimage,postbit_userstar,postbit_online,postbit_offline,postbit_away,postbit_avatar,postbit_find,postbit_pm,postbit_email,postbit_www,postbit_author_user,announcement_edit,announcement_quickdelete,postbit,preview,postmodcp_nav_announcements,modcp_nav_reportcenter,modcp_nav_modlogs"; $templatelist .= ",modcp_awaitingmoderation_none,modcp_banning_edit,modcp_banuser_bangroups_group,modcp_banuser_lift,modcp_modlogs_result_announcement,modcp_modlogs_result_forum,modcp_modlogs_result_post,modcp_modlogs_result_thread,modcp_modlogs_user";	$templatelist .= ",modcp_warninglogs,modcp_modlogs_result,modcp_editprofile_signature,forumjump_advanced,modcp_announcements_forum_nomod,modcp_announcements_announcement,usercp_profile_away,modcp_modlogs_user,modcp_editprofile_away"; $templatelist .= ",multipage,multipage_end,multipage_jump_page,multipage_nextpage,multipage_page,multipage_page_current,multipage_page_link_current,multipage_prevpage,multipage_start,modcp_awaitingattachments,modcp_modqueue_attachment_link"; $templatelist .= ",postbit_groupimage,postbit_userstar,postbit_online,postbit_offline,postbit_away,postbit_avatar,postbit_find,postbit_pm,postbit_email,postbit_www,postbit_author_user,announcement_edit,announcement_quickdelete"; $templatelist .= ",modcp_awaitingmoderation_none,modcp_banning_edit,modcp_banuser_bangroups_group,modcp_banuser_lift,modcp_modlogs_result_announcement,modcp_modlogs_result_forum,modcp_modlogs_result_post,modcp_modlogs_result_thread";
$templatelist .= ",modcp_nav_warninglogs,modcp_nav_ipsearch,modcp_nav_users,modcp_announcements_day,modcp_announcements_month_start,modcp_announcements_month_end,modcp_announcements_announcement_expired,modcp_announcements_announcement_active";	$templatelist .= ",modcp_nav_warninglogs,modcp_nav_ipsearch,modcp_nav_users,modcp_announcements_day,modcp_announcements_month_start,modcp_announcements_month_end,modcp_announcements_announcement_expired,modcp_announcements_announcement_active";
$templatelist .= ",modcp_modqueue_link_forum,modcp_modqueue_link_thread,usercp_profile_day,usercp_profile_away,modcp_ipsearch_result_regip,modcp_ipsearch_result_lastip,modcp_ipsearch_result_post,modcp_ipsearch_results_information,usercp_profile_profilefields_text"; $templatelist .= ",usercp_profile_profilefields_select_option,usercp_profile_profilefields_multiselect,usercp_profile_profilefields_select,usercp_profile_profilefields_textarea,usercp_profile_profilefields_radio,usercp_profile_profilefields_checkbox";	$templatelist .= ",modcp_modqueue_link_forum,modcp_modqueue_link_thread,usercp_profile_day,modcp_ipsearch_result_regip,modcp_ipsearch_result_lastip,modcp_ipsearch_result_post,modcp_ipsearch_results_information,usercp_profile_profilefields_text"; $templatelist .= ",usercp_profile_profilefields_select_option,usercp_profile_profilefields_multiselect,usercp_profile_profilefields_select,usercp_profile_profilefields_textarea,usercp_profile_profilefields_radio,postbit"; $templatelist .= ",modcp_banning_remaining,postmodcp_nav_announcements,modcp_nav_reportcenter,modcp_nav_modlogs,modcp_latestfivemodactions,modcp_banuser_bangroups_hidden,modcp_banuser_bangroups,usercp_profile_profilefields_checkbox";
require_once "./global.php"; require_once MYBB_ROOT."inc/functions_user.php";	require_once "./global.php"; require_once MYBB_ROOT."inc/functions_user.php";
Zeile 57	Zeile 58
$moderated_forums = array(); if($mybb->usergroup['issupermod'] != 1) {	$moderated_forums = array(); if($mybb->usergroup['issupermod'] != 1) {
$query = $db->simple_select("moderators", "*", "(id='{$mybb->user['uid']}' AND isgroup = '0') OR (id='{$mybb->user['usergroup']}' AND isgroup = '1')");	$query = $db->simple_select("moderators", "*", "(id='{$mybb->user['uid']}' AND isgroup = '0') OR (id IN ({$mybb->usergroup['all_usergroups']}) AND isgroup = '1')");
$numannouncements = $nummodqueuethreads = $nummodqueueposts = $nummodqueueattach = $numreportedposts = $nummodlogs = 0; while($forum = $db->fetch_array($query))	$numannouncements = $nummodqueuethreads = $nummodqueueposts = $nummodqueueattach = $numreportedposts = $nummodlogs = 0; while($forum = $db->fetch_array($query))
Zeile 262	Zeile 263
if(!empty($nav_announcements) \|\| !empty($nav_modqueue) \|\| !empty($nav_reportcenter) \|\| !empty($nav_modlogs)) {	if(!empty($nav_announcements) \|\| !empty($nav_modqueue) \|\| !empty($nav_reportcenter) \|\| !empty($nav_modlogs)) {
	$expaltext = (in_array("modcpforums", $collapse)) ? "[+]" : "[-]";
eval("\$modcp_nav_forums_posts = \"".$templates->get("modcp_nav_forums_posts")."\";"); } if(!empty($nav_editprofile) \|\| !empty($nav_banning) \|\| !empty($nav_warninglogs) \|\| !empty($nav_ipsearch)) {	eval("\$modcp_nav_forums_posts = \"".$templates->get("modcp_nav_forums_posts")."\";"); } if(!empty($nav_editprofile) \|\| !empty($nav_banning) \|\| !empty($nav_warninglogs) \|\| !empty($nav_ipsearch)) {
	$expaltext = (in_array("modcpusers", $collapse)) ? "[+]" : "[-]";
eval("\$modcp_nav_users = \"".$templates->get("modcp_nav_users")."\";"); }	eval("\$modcp_nav_users = \"".$templates->get("modcp_nav_users")."\";"); }
Zeile 284	Zeile 287
verify_post_check($mybb->get_input('my_post_key')); $mybb->input['reports'] = $mybb->get_input('reports', MyBB::INPUT_ARRAY);	verify_post_check($mybb->get_input('my_post_key')); $mybb->input['reports'] = $mybb->get_input('reports', MyBB::INPUT_ARRAY);
if(empty($mybb->input['reports']))	if(empty($mybb->input['reports']) && empty($mybb->cookies['inlinereports']))
{ error($lang->error_noselected_reports); }	{ error($lang->error_noselected_reports); }
$sql = '1=1'; if(empty($mybb->input['allbox']))	$message = $lang->redirect_reportsmarked; if(isset($mybb->cookies['inlinereports'])) { if($mybb->cookies['inlinereports'] == '\|ALL\|') { $message = $lang->redirect_allreportsmarked; $sql = "1=1"; if(isset($mybb->cookies['inlinereports_removed'])) { $inlinereportremovedlist = explode("\|", $mybb->cookies['inlinereports_removed']); $reports = array_map("intval", $inlinereportremovedlist); $rids = implode("','", $reports); $sql = "rid NOT IN ('0','{$rids}')"; } } else { $inlinereportlist = explode("\|", $mybb->cookies['inlinereports']); $reports = array_map("intval", $inlinereportlist); if(!count($reports)) { error($lang->error_noselected_reports); } $rids = implode("','", $reports); $sql = "rid IN ('0','{$rids}')"; } } else
{ $mybb->input['reports'] = array_map("intval", $mybb->input['reports']); $rids = implode("','", $mybb->input['reports']); $sql = "rid IN ('0','{$rids}')";	{ $mybb->input['reports'] = array_map("intval", $mybb->input['reports']); $rids = implode("','", $mybb->input['reports']); $sql = "rid IN ('0','{$rids}')";
}	}
$plugins->run_hooks("modcp_do_reports");	$plugins->run_hooks("modcp_do_reports");

$db->update_query("reportedcontent", array('reportstatus' => 1), "{$sql}{$flist_reports}"); $cache->update_reportedcontent();	$db->update_query("reportedcontent", array('reportstatus' => 1), "{$sql}{$flist_reports}"); $cache->update_reportedcontent();
	my_unsetcookie('inlinereports'); my_unsetcookie('inlinereports_removed');
$page = $mybb->get_input('page', MyBB::INPUT_INT);	$page = $mybb->get_input('page', MyBB::INPUT_INT);
redirect("modcp.php?action=reports&page={$page}", $lang->redirect_reportsmarked);	redirect("modcp.php?action=reports&page={$page}", $message);
} if($mybb->input['action'] == "reports") { if($mybb->usergroup['canmanagereportedcontent'] == 0)	} if($mybb->input['action'] == "reports") { if($mybb->usergroup['canmanagereportedcontent'] == 0)
{	{
error_no_permission(); }	error_no_permission(); }
Zeile 338	Zeile 373
else { $query = $db->simple_select('reportedcontent', 'id3', "reportstatus='0' AND (type = 'post' OR type = '')");	else { $query = $db->simple_select('reportedcontent', 'id3', "reportstatus='0' AND (type = 'post' OR type = '')");
$report_count = 0; while($fid = $db->fetch_field($query, 'id3')) { if(is_moderator($fid, "canmanagereportedposts")) {	$report_count = 0; while($fid = $db->fetch_field($query, 'id3')) { if(is_moderator($fid, "canmanagereportedposts")) {
++$report_count; } } unset($fid);	++$report_count; } } unset($fid);
} $page = $mybb->get_input('page', MyBB::INPUT_INT);	} $page = $mybb->get_input('page', MyBB::INPUT_INT);
$postcount = (int)$report_count; $pages = $postcount / $perpage;	$postcount = (int)$report_count; $pages = $postcount / $perpage;
Zeile 369	Zeile 404
{ $start = 0; $page = 1;	{ $start = 0; $page = 1;
}	}
$multipage = $reportspages = ''; if($postcount > $perpage)	$multipage = $reportspages = ''; if($postcount > $perpage)
Zeile 383	Zeile 418
// Reports $reports = ''; $query = $db->query("	// Reports $reports = ''; $query = $db->query("
SELECT r.*, u.username	SELECT r.*, u.username, rr.title
FROM ".TABLE_PREFIX."reportedcontent r LEFT JOIN ".TABLE_PREFIX."users u ON (r.uid = u.uid)	FROM ".TABLE_PREFIX."reportedcontent r LEFT JOIN ".TABLE_PREFIX."users u ON (r.uid = u.uid)
	LEFT JOIN ".TABLE_PREFIX."reportreasons rr ON (r.reasonid = rr.rid)
WHERE r.reportstatus = '0'{$tflist_reports} ORDER BY r.reports DESC LIMIT {$start}, {$perpage}	WHERE r.reportstatus = '0'{$tflist_reports} ORDER BY r.reports DESC LIMIT {$start}, {$perpage}
Zeile 395	Zeile 431
{ // No unread reports eval("\$reports = \"".$templates->get("modcp_reports_noreports")."\";");	{ // No unread reports eval("\$reports = \"".$templates->get("modcp_reports_noreports")."\";");
} else	} else
{ $reportedcontent = $cache->read("reportedcontent"); $reportcache = $usercache = $postcache = array();	{ $reportedcontent = $cache->read("reportedcontent"); $reportcache = $usercache = $postcache = array();
Zeile 407	Zeile 443
{ // Profile UID is in ID if(!isset($usercache[$report['id']]))	{ // Profile UID is in ID if(!isset($usercache[$report['id']]))
{	{
$usercache[$report['id']] = $report['id']; }	$usercache[$report['id']] = $report['id']; }
Zeile 426	Zeile 462
} } else if(!$report['type'] \|\| $report['type'] == 'post')	} } else if(!$report['type'] \|\| $report['type'] == 'post')
{	{
// This (should) be a post $postcache[$report['id']] = $report['id']; }	// This (should) be a post $postcache[$report['id']] = $report['id']; }
Zeile 446	Zeile 482
if(is_array($reporters)) { $lastposter = end($reporters);	if(is_array($reporters)) { $lastposter = end($reporters);
} }	} }
if(!isset($usercache[$lastposter])) { $usercache[$lastposter] = $lastposter;	if(!isset($usercache[$lastposter])) { $usercache[$lastposter] = $lastposter;
Zeile 461	Zeile 497
// Report Center gets messy // Find information about our users (because we don't log it when they file a report) if(!empty($usercache))	// Report Center gets messy // Find information about our users (because we don't log it when they file a report) if(!empty($usercache))
{	{
$sql = implode(',', array_keys($usercache)); $query = $db->simple_select("users", "uid, username", "uid IN ({$sql})"); while($user = $db->fetch_array($query)) { $usercache[$user['uid']] = $user;	$sql = implode(',', array_keys($usercache)); $query = $db->simple_select("users", "uid, username", "uid IN ({$sql})"); while($user = $db->fetch_array($query)) { $usercache[$user['uid']] = $user;
}	}
} // Messy * 2 // Find out post information for our reported posts if(!empty($postcache))	} // Messy * 2 // Find out post information for our reported posts if(!empty($postcache))
{	{
$sql = implode(',', array_keys($postcache)); $query = $db->query(" SELECT p.pid, p.uid, p.username, p.tid, t.subject	$sql = implode(',', array_keys($postcache)); $query = $db->query(" SELECT p.pid, p.uid, p.username, p.tid, t.subject
Zeile 488	Zeile 524
$postcache[$post['pid']] = $post; } }	$postcache[$post['pid']] = $post; } }
	$lang->page_selected = $lang->sprintf($lang->page_selected, count($reportcache)); $lang->select_all = $lang->sprintf($lang->select_all, (int)$report_count); $lang->all_selected = $lang->sprintf($lang->all_selected, (int)$report_count); eval("\$selectall = \"".$templates->get("modcp_reports_selectall")."\";");
$plugins->run_hooks('modcp_reports_intermediate');	$plugins->run_hooks('modcp_reports_intermediate');
	$inlinecount = 0;
// Now that we have all of the information needed, display the reports foreach($reportcache as $report) {	// Now that we have all of the information needed, display the reports foreach($reportcache as $report) {
Zeile 500	Zeile 542
{ // Assume a post $report['type'] = 'post';	{ // Assume a post $report['type'] = 'post';
}	}
// Report Information $report_data = array();	// Report Information $report_data = array();
Zeile 509	Zeile 551
{ case 'post': $post = get_post_link($report['id'])."#pid{$report['id']}";	{ case 'post': $post = get_post_link($report['id'])."#pid{$report['id']}";
$user = build_profile_link($postcache[$report['id']]['username'], $postcache[$report['id']]['uid']);	$user = build_profile_link(htmlspecialchars_uni($postcache[$report['id']]['username']), $postcache[$report['id']]['uid']);
$report_data['content'] = $lang->sprintf($lang->report_info_post, $post, $user); $thread_link = get_thread_link($postcache[$report['id']]['tid']);	$report_data['content'] = $lang->sprintf($lang->report_info_post, $post, $user); $thread_link = get_thread_link($postcache[$report['id']]['tid']);
$thread_subject = htmlspecialchars_uni($postcache[$report['id']]['subject']);	$thread_subject = htmlspecialchars_uni($parser->parse_badwords($postcache[$report['id']]['subject']));
$report_data['content'] .= $lang->sprintf($lang->report_info_post_thread, $thread_link, $thread_subject);	$report_data['content'] .= $lang->sprintf($lang->report_info_post_thread, $thread_link, $thread_subject);

break; case 'profile':	break; case 'profile':
$user = build_profile_link($usercache[$report['id']]['username'], $usercache[$report['id']]['uid']);	$user = build_profile_link(htmlspecialchars_uni($usercache[$report['id']]['username']), $usercache[$report['id']]['uid']);
$report_data['content'] = $lang->sprintf($lang->report_info_profile, $user); break; case 'reputation': $reputation_link = "reputation.php?uid={$usercache[$report['id3']]['uid']}#rid{$report['id']}";	$report_data['content'] = $lang->sprintf($lang->report_info_profile, $user); break; case 'reputation': $reputation_link = "reputation.php?uid={$usercache[$report['id3']]['uid']}#rid{$report['id']}";
$bad_user = build_profile_link($usercache[$report['id2']]['username'], $usercache[$report['id2']]['uid']);	$bad_user = build_profile_link(htmlspecialchars_uni($usercache[$report['id2']]['username']), $usercache[$report['id2']]['uid']);
$report_data['content'] = $lang->sprintf($lang->report_info_reputation, $reputation_link, $bad_user);	$report_data['content'] = $lang->sprintf($lang->report_info_reputation, $reputation_link, $bad_user);
$good_user = build_profile_link($usercache[$report['id3']]['username'], $usercache[$report['id3']]['uid']);	$good_user = build_profile_link(htmlspecialchars_uni($usercache[$report['id3']]['username']), $usercache[$report['id3']]['uid']);
$report_data['content'] .= $lang->sprintf($lang->report_info_rep_profile, $good_user); break;	$report_data['content'] .= $lang->sprintf($lang->report_info_rep_profile, $good_user); break;
} // Report reason and comment $report_data['comment'] = $lang->na; $report_string = "report_reason_{$report['reason']}"; if(isset($lang->$report_string)) { $report_data['comment'] = $lang->$report_string; } else if(!empty($report['reason'])) { $report_data['comment'] = htmlspecialchars_uni($report['reason']); }	} // Report reason and comment if($report['reasonid'] > 0) { $reason = htmlspecialchars_uni($lang->parse($report['title'])); if(empty($report['reason'])) { eval("\$report_data['comment'] = \"".$templates->get("modcp_reports_report_comment")."\";"); } else { $comment = htmlspecialchars_uni($report['reason']); eval("\$report_data['comment'] = \"".$templates->get("modcp_reports_report_comment_extra")."\";"); } } else { $report_data['comment'] = $lang->na; }
$report_reports = 1; if($report['reports']) { $report_data['reports'] = my_number_format($report['reports']);	$report_reports = 1; if($report['reports']) { $report_data['reports'] = my_number_format($report['reports']);
}	}
if($report['lastreporter']) { if(is_array($usercache[$report['lastreporter']]))	if($report['lastreporter']) { if(is_array($usercache[$report['lastreporter']]))
{ $lastreport_user = build_profile_link($usercache[$report['lastreporter']]['username'], $report['lastreporter']); }	{ $lastreport_user = build_profile_link(htmlspecialchars_uni($usercache[$report['lastreporter']]['username']), $report['lastreporter']); }
elseif($usercache[$report['lastreporter']] > 0) {	elseif($usercache[$report['lastreporter']] > 0) {
$lastreport_user = $lang->na_deleted;	$lastreport_user = htmlspecialchars_uni($lang->na_deleted);
}	}

$lastreport_date = my_date('relative', $report['lastreport']); $report_data['lastreporter'] = $lang->sprintf($lang->report_info_lastreporter, $lastreport_date, $lastreport_user);	$lastreport_date = my_date('relative', $report['lastreport']); $report_data['lastreporter'] = $lang->sprintf($lang->report_info_lastreporter, $lastreport_date, $lastreport_user);
	} $inlinecheck = ''; if(isset($mybb->cookies['inlinereports']) && my_strpos($mybb->cookies['inlinereports'], "\|{$report['rid']}\|") !== false) { $inlinecheck = " checked=\"checked\""; ++$inlinecount;
} $plugins->run_hooks("modcp_reports_report");	} $plugins->run_hooks("modcp_reports_report");
Zeile 669	Zeile 725
$plugins->run_hooks("modcp_allreports_start"); $query = $db->query("	$plugins->run_hooks("modcp_allreports_start"); $query = $db->query("
SELECT r.*, u.username, p.username AS postusername, up.uid AS postuid, t.subject AS threadsubject, prrep.username AS repusername, pr.username AS profileusername	SELECT r.*, u.username, p.username AS postusername, up.uid AS postuid, t.subject AS threadsubject, prrep.username AS repusername, pr.username AS profileusername, rr.title
FROM ".TABLE_PREFIX."reportedcontent r LEFT JOIN ".TABLE_PREFIX."posts p ON (r.id=p.pid) LEFT JOIN ".TABLE_PREFIX."threads t ON (p.tid=t.tid)	FROM ".TABLE_PREFIX."reportedcontent r LEFT JOIN ".TABLE_PREFIX."posts p ON (r.id=p.pid) LEFT JOIN ".TABLE_PREFIX."threads t ON (p.tid=t.tid)
Zeile 677	Zeile 733
LEFT JOIN ".TABLE_PREFIX."users up ON (p.uid=up.uid) LEFT JOIN ".TABLE_PREFIX."users pr ON (pr.uid=r.id) LEFT JOIN ".TABLE_PREFIX."users prrep ON (prrep.uid=r.id2)	LEFT JOIN ".TABLE_PREFIX."users up ON (p.uid=up.uid) LEFT JOIN ".TABLE_PREFIX."users pr ON (pr.uid=r.id) LEFT JOIN ".TABLE_PREFIX."users prrep ON (prrep.uid=r.id2)
	LEFT JOIN ".TABLE_PREFIX."reportreasons rr ON (r.reasonid = rr.rid)
{$wflist_reports} ORDER BY r.dateline DESC LIMIT {$start}, {$perpage}	{$wflist_reports} ORDER BY r.dateline DESC LIMIT {$start}, {$perpage}
Zeile 696	Zeile 753
if($report['type'] == 'post') { $post = get_post_link($report['id'])."#pid{$report['id']}";	if($report['type'] == 'post') { $post = get_post_link($report['id'])."#pid{$report['id']}";
$user = build_profile_link($report['postusername'], $report['postuid']);	$user = build_profile_link(htmlspecialchars_uni($report['postusername']), $report['postuid']);
$report_data['content'] = $lang->sprintf($lang->report_info_post, $post, $user); $thread_link = get_thread_link($report['id2']);	$report_data['content'] = $lang->sprintf($lang->report_info_post, $post, $user); $thread_link = get_thread_link($report['id2']);
$thread_subject = htmlspecialchars_uni($report['threadsubject']);	$thread_subject = htmlspecialchars_uni($parser->parse_badwords($report['threadsubject']));
$report_data['content'] .= $lang->sprintf($lang->report_info_post_thread, $thread_link, $thread_subject); } else if($report['type'] == 'profile') {	$report_data['content'] .= $lang->sprintf($lang->report_info_post_thread, $thread_link, $thread_subject); } else if($report['type'] == 'profile') {
$user = build_profile_link($report['profileusername'], $report['id']);	$user = build_profile_link(htmlspecialchars_uni($report['profileusername']), $report['id']);
$report_data['content'] = $lang->sprintf($lang->report_info_profile, $user); } else if($report['type'] == 'reputation') {	$report_data['content'] = $lang->sprintf($lang->report_info_profile, $user); } else if($report['type'] == 'reputation') {
$user = build_profile_link($report['repusername'], $report['id2']);	$user = build_profile_link(htmlspecialchars_uni($report['repusername']), $report['id2']);
$reputation_link = "reputation.php?uid={$report['id3']}#rid{$report['id']}"; $report_data['content'] = $lang->sprintf($lang->report_info_reputation, $reputation_link, $user); } // Report reason and comment	$reputation_link = "reputation.php?uid={$report['id3']}#rid{$report['id']}"; $report_data['content'] = $lang->sprintf($lang->report_info_reputation, $reputation_link, $user); } // Report reason and comment
$report_data['comment'] = $lang->na; $report_string = "report_reason_{$report['reason']}";	if($report['reasonid'] > 0) { $reason = htmlspecialchars_uni($lang->parse($report['title'])); if(empty($report['reason'])) { eval("\$report_data['comment'] = \"".$templates->get("modcp_reports_report_comment")."\";"); } else { $comment = htmlspecialchars_uni($report['reason']); eval("\$report_data['comment'] = \"".$templates->get("modcp_reports_report_comment_extra")."\";"); } } else { $report_data['comment'] = $lang->na; }
$report['reporterlink'] = get_profile_link($report['uid']); if(!$report['username'])	$report['reporterlink'] = get_profile_link($report['uid']); if(!$report['username'])
Zeile 725	Zeile 798
$report['username'] = $lang->na_deleted; $report['reporterlink'] = $post; }	$report['username'] = $lang->na_deleted; $report['reporterlink'] = $post; }
if(isset($lang->$report_string)) { $report_data['comment'] = $lang->$report_string; } else if(!empty($report['reason'])) { $report_data['comment'] = htmlspecialchars_uni($report['reason']); }	$report['username'] = htmlspecialchars_uni($report['username']);
$report_data['reports'] = my_number_format($report['reports']); $report_data['time'] = my_date('relative', $report['dateline']);	$report_data['reports'] = my_number_format($report['reports']); $report_data['time'] = my_date('relative', $report['dateline']);
Zeile 889	Zeile 954
$logitem['action'] = htmlspecialchars_uni($logitem['action']); $log_date = my_date('relative', $logitem['dateline']); $trow = alt_trow();	$logitem['action'] = htmlspecialchars_uni($logitem['action']); $log_date = my_date('relative', $logitem['dateline']); $trow = alt_trow();
$username = format_name($logitem['username'], $logitem['usergroup'], $logitem['displaygroup']); $logitem['profilelink'] = build_profile_link($username, $logitem['uid']);	if($logitem['username']) { $logitem['username'] = htmlspecialchars_uni($logitem['username']); $username = format_name($logitem['username'], $logitem['usergroup'], $logitem['displaygroup']); $logitem['profilelink'] = build_profile_link($username, $logitem['uid']); } else { $username = $logitem['profilelink'] = $logitem['username'] = htmlspecialchars_uni($lang->na_deleted); }
$logitem['ipaddress'] = my_inet_ntop($db->unescape_binary($logitem['ipaddress'])); if($logitem['tsubject']) {	$logitem['ipaddress'] = my_inet_ntop($db->unescape_binary($logitem['ipaddress'])); if($logitem['tsubject']) {
$logitem['tsubject'] = htmlspecialchars_uni($logitem['tsubject']);	$logitem['tsubject'] = htmlspecialchars_uni($parser->parse_badwords($logitem['tsubject']));
$logitem['thread'] = get_thread_link($logitem['tid']); eval("\$information .= \"".$templates->get("modcp_modlogs_result_thread")."\";"); }	$logitem['thread'] = get_thread_link($logitem['tid']); eval("\$information .= \"".$templates->get("modcp_modlogs_result_thread")."\";"); }
Zeile 906	Zeile 979
} if($logitem['psubject']) {	} if($logitem['psubject']) {
$logitem['psubject'] = htmlspecialchars_uni($logitem['psubject']);	$logitem['psubject'] = htmlspecialchars_uni($parser->parse_badwords($logitem['psubject']));
$logitem['post'] = get_post_link($logitem['pid']); eval("\$information .= \"".$templates->get("modcp_modlogs_result_post")."\";"); }	$logitem['post'] = get_post_link($logitem['pid']); eval("\$information .= \"".$templates->get("modcp_modlogs_result_post")."\";"); }
Zeile 916	Zeile 989
{ $data = my_unserialize($logitem['data']); if(!empty($data['uid']))	{ $data = my_unserialize($logitem['data']); if(!empty($data['uid']))
{	{ $data['username'] = htmlspecialchars_uni($data['username']);
$information = $lang->sprintf($lang->edited_user_info, htmlspecialchars_uni($data['username']), get_profile_link($data['uid'])); } if(!empty($data['aid'])) {	$information = $lang->sprintf($lang->edited_user_info, htmlspecialchars_uni($data['username']), get_profile_link($data['uid'])); } if(!empty($data['aid'])) {
$data['subject'] = htmlspecialchars_uni($data['subject']);	$data['subject'] = htmlspecialchars_uni($parser->parse_badwords($data['subject']));
$data['announcement'] = get_announcement_link($data['aid']); eval("\$information .= \"".$templates->get("modcp_modlogs_result_announcement")."\";"); } }	$data['announcement'] = get_announcement_link($data['aid']); eval("\$information .= \"".$templates->get("modcp_modlogs_result_announcement")."\";"); } }
	$plugins->run_hooks("modcp_modlogs_result");
eval("\$results .= \"".$templates->get("modcp_modlogs_result")."\";"); }	eval("\$results .= \"".$templates->get("modcp_modlogs_result")."\";"); }
Zeile 955	Zeile 1031
if(!$user['username']) { $user['username'] = $lang->na_deleted;	if(!$user['username']) { $user['username'] = $lang->na_deleted;
}	}
$selected = ''; if($mybb->get_input('uid', MyBB::INPUT_INT) == $user['uid'])	$selected = ''; if($mybb->get_input('uid', MyBB::INPUT_INT) == $user['uid'])
Zeile 971	Zeile 1047
eval("\$modlogs = \"".$templates->get("modcp_modlogs")."\";"); output_page($modlogs);	eval("\$modlogs = \"".$templates->get("modcp_modlogs")."\";"); output_page($modlogs);
}	}
if($mybb->input['action'] == "do_delete_announcement") { verify_post_check($mybb->get_input('my_post_key'));	if($mybb->input['action'] == "do_delete_announcement") { verify_post_check($mybb->get_input('my_post_key'));
if($mybb->usergroup['canmanageannounce'] == 0) { error_no_permission(); } $aid = $mybb->get_input('aid'); $query = $db->simple_select("announcements", "aid, subject, fid", "aid='{$aid}'"); $announcement = $db->fetch_array($query); if(!$announcement) {	if($mybb->usergroup['canmanageannounce'] == 0) { error_no_permission(); } $aid = $mybb->get_input('aid'); $query = $db->simple_select("announcements", "aid, subject, fid", "aid='{$aid}'"); $announcement = $db->fetch_array($query); if(!$announcement) {
error($lang->error_invalid_announcement); } if(($mybb->usergroup['issupermod'] != 1 && $announcement['fid'] == -1) \|\| ($announcement['fid'] != -1 && !is_moderator($announcement['fid'], "canmanageannouncements")) \|\| ($unviewableforums && in_array($announcement['fid'], $unviewableforums))) { error_no_permission();	error($lang->error_invalid_announcement); } if(($mybb->usergroup['issupermod'] != 1 && $announcement['fid'] == -1) \|\| ($announcement['fid'] != -1 && !is_moderator($announcement['fid'], "canmanageannouncements")) \|\| ($unviewableforums && in_array($announcement['fid'], $unviewableforums))) { error_no_permission();
}	}
$plugins->run_hooks("modcp_do_delete_announcement"); $db->delete_query("announcements", "aid='{$aid}'");	$plugins->run_hooks("modcp_do_delete_announcement"); $db->delete_query("announcements", "aid='{$aid}'");
Zeile 1010	Zeile 1086
{ error_no_permission(); }	{ error_no_permission(); }

$aid = $mybb->get_input('aid'); $query = $db->simple_select("announcements", "aid, subject, fid", "aid='{$aid}'");	$aid = $mybb->get_input('aid'); $query = $db->simple_select("announcements", "aid, subject, fid", "aid='{$aid}'");

$announcement = $db->fetch_array($query);	$announcement = $db->fetch_array($query);
$announcement['subject'] = htmlspecialchars_uni($announcement['subject']);	$announcement['subject'] = htmlspecialchars_uni($parser->parse_badwords($announcement['subject']));
if(!$announcement)	if(!$announcement)
{	{
error($lang->error_invalid_announcement); }	error($lang->error_invalid_announcement); }
if(($mybb->usergroup['issupermod'] != 1 && $announcement['fid'] == -1) \|\| ($announcement['fid'] != -1 && !is_moderator($announcement['fid'], "canmanageannouncements")) \|\| ($unviewableforums && in_array($announcement['fid'], $unviewableforums))) { error_no_permission(); }	if(($mybb->usergroup['issupermod'] != 1 && $announcement['fid'] == -1) \|\| ($announcement['fid'] != -1 && !is_moderator($announcement['fid'], "canmanageannouncements")) \|\| ($unviewableforums && in_array($announcement['fid'], $unviewableforums))) { error_no_permission(); }
$plugins->run_hooks("modcp_delete_announcement"); eval("\$announcements = \"".$templates->get("modcp_announcements_delete")."\";");	$plugins->run_hooks("modcp_delete_announcement"); eval("\$announcements = \"".$templates->get("modcp_announcements_delete")."\";");
Zeile 1046	Zeile 1122
if(($mybb->usergroup['issupermod'] != 1 && $announcement_fid == -1) \|\| ($announcement_fid != -1 && !is_moderator($announcement_fid, "canmanageannouncements")) \|\| ($unviewableforums && in_array($announcement_fid, $unviewableforums))) { error_no_permission();	if(($mybb->usergroup['issupermod'] != 1 && $announcement_fid == -1) \|\| ($announcement_fid != -1 && !is_moderator($announcement_fid, "canmanageannouncements")) \|\| ($unviewableforums && in_array($announcement_fid, $unviewableforums))) { error_no_permission();
} $errors = array();	} $errors = array();
$mybb->input['title'] = $mybb->get_input('title'); if(!trim($mybb->input['title'])) {	$mybb->input['title'] = $mybb->get_input('title'); if(!trim($mybb->input['title'])) {
Zeile 1080	Zeile 1156
if($startdate[0] >= 24) { $startdate[0] = "00";	if($startdate[0] >= 24) { $startdate[0] = "00";
}	}
} if(stristr($mybb->input['endtime_time'], "pm"))	} if(stristr($mybb->input['endtime_time'], "pm"))
Zeile 1090	Zeile 1166
{ $enddate[0] = "00"; }	{ $enddate[0] = "00"; }
}	}
$mybb->input['starttime_month'] = $mybb->get_input('starttime_month'); $months = array('01', '02', '03', '04', '05', '06', '07', '08', '09', '10', '11', '12'); if(!in_array($mybb->input['starttime_month'], $months))	$mybb->input['starttime_month'] = $mybb->get_input('starttime_month'); $months = array('01', '02', '03', '04', '05', '06', '07', '08', '09', '10', '11', '12'); if(!in_array($mybb->input['starttime_month'], $months))
Zeile 1099	Zeile 1175
$mybb->input['starttime_month'] = '01'; }	$mybb->input['starttime_month'] = '01'; }
$startdate = gmmktime((int)$startdate[0], (int)$startdate[1], 0, $mybb->get_input('starttime_month', MyBB::INPUT_INT), $mybb->get_input('starttime_day', MyBB::INPUT_INT), $mybb->get_input('starttime_year', MyBB::INPUT_INT));	$localized_time_offset = (float)$mybb->user['timezone']3600 + $mybb->user['dst']3600; $startdate = gmmktime((int)$startdate[0], (int)$startdate[1], 0, $mybb->get_input('starttime_month', MyBB::INPUT_INT), $mybb->get_input('starttime_day', MyBB::INPUT_INT), $mybb->get_input('starttime_year', MyBB::INPUT_INT)) - $localized_time_offset;
if(!checkdate($mybb->get_input('starttime_month', MyBB::INPUT_INT), $mybb->get_input('starttime_day', MyBB::INPUT_INT), $mybb->get_input('starttime_year', MyBB::INPUT_INT)) \|\| $startdate < 0 \|\| $startdate == false) { $errors[] = $lang->error_invalid_start_date;	if(!checkdate($mybb->get_input('starttime_month', MyBB::INPUT_INT), $mybb->get_input('starttime_day', MyBB::INPUT_INT), $mybb->get_input('starttime_year', MyBB::INPUT_INT)) \|\| $startdate < 0 \|\| $startdate == false) { $errors[] = $lang->error_invalid_start_date;
Zeile 1117	Zeile 1195
{ $mybb->input['endtime_month'] = '01'; }	{ $mybb->input['endtime_month'] = '01'; }
$enddate = gmmktime((int)$enddate[0], (int)$enddate[1], 0, $mybb->get_input('endtime_month', MyBB::INPUT_INT), $mybb->get_input('endtime_day', MyBB::INPUT_INT), $mybb->get_input('endtime_year', MyBB::INPUT_INT));	$enddate = gmmktime((int)$enddate[0], (int)$enddate[1], 0, $mybb->get_input('endtime_month', MyBB::INPUT_INT), $mybb->get_input('endtime_day', MyBB::INPUT_INT), $mybb->get_input('endtime_year', MyBB::INPUT_INT)) - $localized_time_offset;
if(!checkdate($mybb->get_input('endtime_month', MyBB::INPUT_INT), $mybb->get_input('endtime_day', MyBB::INPUT_INT), $mybb->get_input('endtime_year', MyBB::INPUT_INT)) \|\| $enddate < 0 \|\| $enddate == false) { $errors[] = $lang->error_invalid_end_date;	if(!checkdate($mybb->get_input('endtime_month', MyBB::INPUT_INT), $mybb->get_input('endtime_day', MyBB::INPUT_INT), $mybb->get_input('endtime_year', MyBB::INPUT_INT)) \|\| $enddate < 0 \|\| $enddate == false) { $errors[] = $lang->error_invalid_end_date;
Zeile 1129	Zeile 1207
} }	} }
if($mybb->get_input('allowhtml', MyBB::INPUT_INT) == 1)	if($mybb->settings['announcementshtml'] && $mybb->get_input('allowhtml', MyBB::INPUT_INT) == 1)
{ $allowhtml = 1; }	{ $allowhtml = 1; }
Zeile 1178	Zeile 1256
); $aid = $db->insert_query("announcements", $insert_announcement);	); $aid = $db->insert_query("announcements", $insert_announcement);
log_moderator_action(array("aid" => $aid, "subject" => $db->escape_string($mybb->input['title'])), $lang->announcement_added);	log_moderator_action(array("aid" => $aid, "subject" => $mybb->input['title']), $lang->announcement_added);
$plugins->run_hooks("modcp_do_new_announcement_end");	$plugins->run_hooks("modcp_do_new_announcement_end");
Zeile 1207	Zeile 1285
if(($mybb->usergroup['issupermod'] != 1 && $announcement_fid == -1) \|\| ($announcement_fid != -1 && !is_moderator($announcement_fid, "canmanageannouncements")) \|\| ($unviewableforums && in_array($announcement_fid, $unviewableforums))) { error_no_permission();	if(($mybb->usergroup['issupermod'] != 1 && $announcement_fid == -1) \|\| ($announcement_fid != -1 && !is_moderator($announcement_fid, "canmanageannouncements")) \|\| ($unviewableforums && in_array($announcement_fid, $unviewableforums))) { error_no_permission();
}	}
// Deal with inline errors if(!empty($errors) \|\| isset($preview)) { if(!empty($errors)) { $errors = inline_error($errors);	// Deal with inline errors if(!empty($errors) \|\| isset($preview)) { if(!empty($errors)) { $errors = inline_error($errors);
} else	} else
{ $errors = ''; }	{ $errors = ''; }
Zeile 1238	Zeile 1316
$endtime_time = htmlspecialchars_uni($mybb->input['endtime_time']); } else	$endtime_time = htmlspecialchars_uni($mybb->input['endtime_time']); } else
{ // Note: dates are in GMT timezone $starttime_time = gmdate("g:i a", TIME_NOW); $endtime_time = gmdate("g:i a", TIME_NOW); $startday = $endday = gmdate("j", TIME_NOW); $startmonth = $endmonth = gmdate("m", TIME_NOW); $startdateyear = gmdate("Y", TIME_NOW);	{ $localized_time = TIME_NOW + (float)$mybb->user['timezone']3600 + $mybb->user['dst']3600; $starttime_time = gmdate($mybb->settings['timeformat'], $localized_time); $endtime_time = gmdate($mybb->settings['timeformat'], $localized_time); $startday = $endday = gmdate("j", $localized_time); $startmonth = $endmonth = gmdate("m", $localized_time); $startdateyear = gmdate("Y", $localized_time);
$announcement = array( 'subject' => '', 'message' => '',	$announcement = array( 'subject' => '', 'message' => '',
'allowhtml' => 1,	'allowhtml' => 0,
'allowmycode' => 1, 'allowsmilies' => 1 );	'allowmycode' => 1, 'allowsmilies' => 1 );
Zeile 1262	Zeile 1341
for($day = 1; $day <= 31; ++$day) { if($startday == $day)	for($day = 1; $day <= 31; ++$day) { if($startday == $day)
{	{
$selected = " selected=\"selected\""; eval("\$startdateday .= \"".$templates->get("modcp_announcements_day")."\";"); }	$selected = " selected=\"selected\""; eval("\$startdateday .= \"".$templates->get("modcp_announcements_day")."\";"); }
Zeile 1275	Zeile 1354
if($endday == $day) { $selected = " selected=\"selected\"";	if($endday == $day) { $selected = " selected=\"selected\"";
eval("\$enddateday .= \"".$templates->get("modcp_announcements_day")."\";"); } else	eval("\$enddateday .= \"".$templates->get("modcp_announcements_day")."\";"); } else
{ $selected = ''; eval("\$enddateday .= \"".$templates->get("modcp_announcements_day")."\";");	{ $selected = ''; eval("\$enddateday .= \"".$templates->get("modcp_announcements_day")."\";");
Zeile 1302	Zeile 1381
$message = htmlspecialchars_uni($announcement['message']); $html_sel = $mycode_sel = $smilies_sel = array('yes' => '', 'no' => '');	$message = htmlspecialchars_uni($announcement['message']); $html_sel = $mycode_sel = $smilies_sel = array('yes' => '', 'no' => '');
if($announcement['allowhtml']) { $html_sel['yes'] = ' checked="checked"'; } else { $html_sel['no'] = ' checked="checked"'; } if($announcement['allowmycode']) {	if($mybb->settings['announcementshtml']) { if($announcement['allowhtml']) { $html_sel['yes'] = ' checked="checked"'; } else { $html_sel['no'] = ' checked="checked"'; } eval("\$allow_html = \"".$templates->get("modcp_announcements_allowhtml")."\";"); } else { $allow_html = ''; } if($announcement['allowmycode']) {
$mycode_sel['yes'] = ' checked="checked"'; } else { $mycode_sel['no'] = ' checked="checked"';	$mycode_sel['yes'] = ' checked="checked"'; } else { $mycode_sel['no'] = ' checked="checked"';
}	}
if($announcement['allowsmilies'])	if($announcement['allowsmilies'])
{	{
$smilies_sel['yes'] = ' checked="checked"'; } else { $smilies_sel['no'] = ' checked="checked"';	$smilies_sel['yes'] = ' checked="checked"'; } else { $smilies_sel['no'] = ' checked="checked"';
}	}
$end_type_sel = array('infinite' => '', 'finite' => ''); if(!isset($mybb->input['endtime_type']) \|\| $mybb->input['endtime_type'] == 2)	$end_type_sel = array('infinite' => '', 'finite' => ''); if(!isset($mybb->input['endtime_type']) \|\| $mybb->input['endtime_type'] == 2)
Zeile 1342	Zeile 1431
// MyCode editor $codebuttons = build_mycode_inserter(); $smilieinserter = build_clickable_smilies();	// MyCode editor $codebuttons = build_mycode_inserter(); $smilieinserter = build_clickable_smilies();

if(isset($preview)) { $announcementarray = array(	if(isset($preview)) { $announcementarray = array(
Zeile 1351	Zeile 1440
'uid' => $mybb->user['uid'], 'subject' => $mybb->input['title'], 'message' => $mybb->input['message'],	'uid' => $mybb->user['uid'], 'subject' => $mybb->input['title'], 'message' => $mybb->input['message'],
'allowhtml' => $mybb->get_input('allowhtml', MyBB::INPUT_INT),	'allowhtml' => $mybb->settings['announcementshtml'] && $mybb->get_input('allowhtml', MyBB::INPUT_INT),
'allowmycode' => $mybb->get_input('allowmycode', MyBB::INPUT_INT), 'allowsmilies' => $mybb->get_input('allowsmilies', MyBB::INPUT_INT), 'dateline' => TIME_NOW, 'userusername' => $mybb->user['username'],	'allowmycode' => $mybb->get_input('allowmycode', MyBB::INPUT_INT), 'allowsmilies' => $mybb->get_input('allowsmilies', MyBB::INPUT_INT), 'dateline' => TIME_NOW, 'userusername' => $mybb->user['username'],
);	);
$array = $mybb->user; foreach($array as $key => $element) { $announcementarray[$key] = $element;	$array = $mybb->user; foreach($array as $key => $element) { $announcementarray[$key] = $element;
}	}
// Gather usergroup data from the cache // Field => Array Key $data_key = array(	// Gather usergroup data from the cache // Field => Array Key $data_key = array(
Zeile 1388	Zeile 1477
else { $preview = '';	else { $preview = '';
} $plugins->run_hooks("modcp_new_announcement");	} $plugins->run_hooks("modcp_new_announcement");
eval("\$announcements = \"".$templates->get("modcp_announcements_new")."\";"); output_page($announcements); }	eval("\$announcements = \"".$templates->get("modcp_announcements_new")."\";"); output_page($announcements); }

if($mybb->input['action'] == "do_edit_announcement")	if($mybb->input['action'] == "do_edit_announcement")
{ verify_post_check($mybb->get_input('my_post_key')); if($mybb->usergroup['canmanageannounce'] == 0) { error_no_permission(); }	{ verify_post_check($mybb->get_input('my_post_key')); if($mybb->usergroup['canmanageannounce'] == 0) { error_no_permission(); }
// Get the announcement $aid = $mybb->get_input('aid', MyBB::INPUT_INT); $query = $db->simple_select("announcements", "*", "aid='{$aid}'");	// Get the announcement $aid = $mybb->get_input('aid', MyBB::INPUT_INT); $query = $db->simple_select("announcements", "*", "aid='{$aid}'");
Zeile 1412	Zeile 1501
// Check that it exists if(!$announcement)	// Check that it exists if(!$announcement)
{	{
error($lang->error_invalid_announcement); }	error($lang->error_invalid_announcement); }
Zeile 1420	Zeile 1509
if(($mybb->usergroup['issupermod'] != 1 && $announcement['fid'] == -1) \|\| ($announcement['fid'] != -1 && !is_moderator($announcement['fid'], "canmanageannouncements")) \|\| ($unviewableforums && in_array($announcement['fid'], $unviewableforums))) { error_no_permission();	if(($mybb->usergroup['issupermod'] != 1 && $announcement['fid'] == -1) \|\| ($announcement['fid'] != -1 && !is_moderator($announcement['fid'], "canmanageannouncements")) \|\| ($unviewableforums && in_array($announcement['fid'], $unviewableforums))) { error_no_permission();
}	}
$errors = array();	$errors = array();
Zeile 1435	Zeile 1524
if(!trim($mybb->input['message'])) { $errors[] = $lang->error_missing_message;	if(!trim($mybb->input['message'])) { $errors[] = $lang->error_missing_message;
}	}
$mybb->input['starttime_time'] = $mybb->get_input('starttime_time'); $mybb->input['endtime_time'] = $mybb->get_input('endtime_time'); $startdate = @explode(" ", $mybb->input['starttime_time']);	$mybb->input['starttime_time'] = $mybb->get_input('starttime_time'); $mybb->input['endtime_time'] = $mybb->get_input('endtime_time'); $startdate = @explode(" ", $mybb->input['starttime_time']);
Zeile 1450	Zeile 1539
if($startdate[0] >= 24) { $startdate[0] = "00";	if($startdate[0] >= 24) { $startdate[0] = "00";
} }	} }
if(stristr($mybb->input['endtime_time'], "pm")) { $enddate[0] = 12+$enddate[0];	if(stristr($mybb->input['endtime_time'], "pm")) { $enddate[0] = 12+$enddate[0];
Zeile 1460	Zeile 1549
{ $enddate[0] = "00"; }	{ $enddate[0] = "00"; }
}	}
$mybb->input['starttime_month'] = $mybb->get_input('starttime_month'); $months = array('01', '02', '03', '04', '05', '06', '07', '08', '09', '10', '11', '12'); if(!in_array($mybb->input['starttime_month'], $months))	$mybb->input['starttime_month'] = $mybb->get_input('starttime_month'); $months = array('01', '02', '03', '04', '05', '06', '07', '08', '09', '10', '11', '12'); if(!in_array($mybb->input['starttime_month'], $months))
Zeile 1469	Zeile 1558
$mybb->input['starttime_month'] = '01'; }	$mybb->input['starttime_month'] = '01'; }
$startdate = gmmktime((int)$startdate[0], (int)$startdate[1], 0, $mybb->get_input('starttime_month', MyBB::INPUT_INT), $mybb->get_input('starttime_day', MyBB::INPUT_INT), $mybb->get_input('starttime_year', MyBB::INPUT_INT));	$localized_time_offset = (float)$mybb->user['timezone']3600 + $mybb->user['dst']3600; $startdate = gmmktime((int)$startdate[0], (int)$startdate[1], 0, $mybb->get_input('starttime_month', MyBB::INPUT_INT), $mybb->get_input('starttime_day', MyBB::INPUT_INT), $mybb->get_input('starttime_year', MyBB::INPUT_INT)) - $localized_time_offset;
if(!checkdate($mybb->get_input('starttime_month', MyBB::INPUT_INT), $mybb->get_input('starttime_day', MyBB::INPUT_INT), $mybb->get_input('starttime_year', MyBB::INPUT_INT)) \|\| $startdate < 0 \|\| $startdate == false) { $errors[] = $lang->error_invalid_start_date;	if(!checkdate($mybb->get_input('starttime_month', MyBB::INPUT_INT), $mybb->get_input('starttime_day', MyBB::INPUT_INT), $mybb->get_input('starttime_year', MyBB::INPUT_INT)) \|\| $startdate < 0 \|\| $startdate == false) { $errors[] = $lang->error_invalid_start_date;
Zeile 1487	Zeile 1578
{ $mybb->input['endtime_month'] = '01'; }	{ $mybb->input['endtime_month'] = '01'; }
$enddate = gmmktime((int)$enddate[0], (int)$enddate[1], 0, $mybb->get_input('endtime_month', MyBB::INPUT_INT), $mybb->get_input('endtime_day', MyBB::INPUT_INT), $mybb->get_input('endtime_year', MyBB::INPUT_INT));	$enddate = gmmktime((int)$enddate[0], (int)$enddate[1], 0, $mybb->get_input('endtime_month', MyBB::INPUT_INT), $mybb->get_input('endtime_day', MyBB::INPUT_INT), $mybb->get_input('endtime_year', MyBB::INPUT_INT)) - $localized_time_offset;
if(!checkdate($mybb->get_input('endtime_month', MyBB::INPUT_INT), $mybb->get_input('endtime_day', MyBB::INPUT_INT), $mybb->get_input('endtime_year', MyBB::INPUT_INT)) \|\| $enddate < 0 \|\| $enddate == false) { $errors[] = $lang->error_invalid_end_date;	if(!checkdate($mybb->get_input('endtime_month', MyBB::INPUT_INT), $mybb->get_input('endtime_day', MyBB::INPUT_INT), $mybb->get_input('endtime_year', MyBB::INPUT_INT)) \|\| $enddate < 0 \|\| $enddate == false) { $errors[] = $lang->error_invalid_end_date;
Zeile 1498	Zeile 1589
} }	} }
if($mybb->get_input('allowhtml', MyBB::INPUT_INT) == 1)	if($mybb->settings['announcementshtml'] && $mybb->get_input('allowhtml', MyBB::INPUT_INT) == 1)
{ $allowhtml = 1; }	{ $allowhtml = 1; }
Zeile 1547	Zeile 1638
); $db->update_query("announcements", $update_announcement, "aid='{$aid}'");	); $db->update_query("announcements", $update_announcement, "aid='{$aid}'");
log_moderator_action(array("aid" => $announcement['aid'], "subject" => $db->escape_string($mybb->input['title'])), $lang->announcement_edited);	log_moderator_action(array("aid" => $announcement['aid'], "subject" => $mybb->input['title']), $lang->announcement_edited);
$plugins->run_hooks("modcp_do_edit_announcement_end");	$plugins->run_hooks("modcp_do_edit_announcement_end");
Zeile 1607	Zeile 1698
// No end date? Make it a year from now. $announcement['enddate'] = $makeshift_time + (60 * 60 * 24 * 366);	// No end date? Make it a year from now. $announcement['enddate'] = $makeshift_time + (60 * 60 * 24 * 366);
}	}
// Deal with inline errors if(!empty($errors) \|\| isset($preview)) {	// Deal with inline errors if(!empty($errors) \|\| isset($preview)) {
Zeile 1620	Zeile 1711
{ $errors = ''; }	{ $errors = ''; }

// Set $announcement to input stuff $announcement['subject'] = $mybb->input['title']; $announcement['message'] = $mybb->input['message'];	// Set $announcement to input stuff $announcement['subject'] = $mybb->input['title']; $announcement['message'] = $mybb->input['message'];
Zeile 1636	Zeile 1727
$enddateyear = htmlspecialchars_uni($mybb->input['endtime_year']); $endday = $mybb->get_input('endtime_day', MyBB::INPUT_INT); $endtime_time = htmlspecialchars_uni($mybb->input['endtime_time']);	$enddateyear = htmlspecialchars_uni($mybb->input['endtime_year']); $endday = $mybb->get_input('endtime_day', MyBB::INPUT_INT); $endtime_time = htmlspecialchars_uni($mybb->input['endtime_time']);

$errored = true; } else {	$errored = true; } else {
// Note: dates are in GMT timezone $starttime_time = gmdate('g:i a', $announcement['startdate']); $endtime_time = gmdate('g:i a', $announcement['enddate']);	$localized_time_startdate = $announcement['startdate'] + (float)$mybb->user['timezone']3600 + $mybb->user['dst']3600; $localized_time_enddate = $announcement['enddate'] + (float)$mybb->user['timezone']3600 + $mybb->user['dst']3600; $starttime_time = gmdate($mybb->settings['timeformat'], $localized_time_startdate); $endtime_time = gmdate($mybb->settings['timeformat'], $localized_time_enddate);

$startday = gmdate('j', $announcement['startdate']); $endday = gmdate('j', $announcement['enddate']);	$startday = gmdate('j', $localized_time_startdate); $endday = gmdate('j', $localized_time_enddate);

$startmonth = gmdate('m', $announcement['startdate']); $endmonth = gmdate('m', $announcement['enddate']);	$startmonth = gmdate('m', $localized_time_startdate); $endmonth = gmdate('m', $localized_time_enddate);

$startdateyear = gmdate('Y', $announcement['startdate']); $enddateyear = gmdate('Y', $announcement['enddate']);	$startdateyear = gmdate('Y', $localized_time_startdate); $enddateyear = gmdate('Y', $localized_time_enddate);
$errored = false; }	$errored = false; }
Zeile 1702	Zeile 1795
$message = htmlspecialchars_uni($announcement['message']); $html_sel = $mycode_sel = $smilies_sel = array('yes' => '', 'no' => '');	$message = htmlspecialchars_uni($announcement['message']); $html_sel = $mycode_sel = $smilies_sel = array('yes' => '', 'no' => '');
if($announcement['allowhtml'])	if($mybb->settings['announcementshtml'])
{	{
$html_sel['yes'] = ' checked="checked"';	if($announcement['allowhtml']) { $html_sel['yes'] = ' checked="checked"'; } else { $html_sel['no'] = ' checked="checked"'; } eval("\$allow_html = \"".$templates->get("modcp_announcements_allowhtml")."\";");
} else {	} else {
$html_sel['no'] = ' checked="checked"';	$allow_html = '';
} if($announcement['allowmycode'])	} if($announcement['allowmycode'])
Zeile 1751	Zeile 1854
'uid' => $mybb->user['uid'], 'subject' => $mybb->input['title'], 'message' => $mybb->input['message'],	'uid' => $mybb->user['uid'], 'subject' => $mybb->input['title'], 'message' => $mybb->input['message'],
'allowhtml' => $mybb->get_input('allowhtml', MyBB::INPUT_INT),	'allowhtml' => $mybb->settings['announcementshtml'] && $mybb->get_input('allowhtml', MyBB::INPUT_INT),
'allowmycode' => $mybb->get_input('allowmycode', MyBB::INPUT_INT), 'allowsmilies' => $mybb->get_input('allowsmilies', MyBB::INPUT_INT), 'dateline' => TIME_NOW,	'allowmycode' => $mybb->get_input('allowmycode', MyBB::INPUT_INT), 'allowsmilies' => $mybb->get_input('allowsmilies', MyBB::INPUT_INT), 'dateline' => TIME_NOW,
Zeile 1821	Zeile 1924
continue; } $announcements[$announcement['fid']][$announcement['aid']] = $announcement;	continue; } $announcements[$announcement['fid']][$announcement['aid']] = $announcement;
}	}
$announcements_global = ''; if($mybb->usergroup['issupermod'] == 1)	$announcements_global = ''; if($mybb->usergroup['issupermod'] == 1)
Zeile 1841	Zeile 1944
eval("\$icon = \"".$templates->get("modcp_announcements_announcement_active")."\";"); }	eval("\$icon = \"".$templates->get("modcp_announcements_announcement_active")."\";"); }
$subject = htmlspecialchars_uni($announcement['subject']);	$subject = htmlspecialchars_uni($parser->parse_badwords($announcement['subject']));
eval("\$announcements_global .= \"".$templates->get("modcp_announcements_announcement_global")."\";"); }	eval("\$announcements_global .= \"".$templates->get("modcp_announcements_announcement_global")."\";"); }
Zeile 1954	Zeile 2057
else if($action == "delete" && $mybb->settings['soft_delete'] != 1) { $moderation->delete_post($post['pid']);	else if($action == "delete" && $mybb->settings['soft_delete'] != 1) { $moderation->delete_post($post['pid']);
} else if($action == "delete")	} else if($action == "delete")
{ $posts_to_delete[] = $post['pid']; }	{ $posts_to_delete[] = $post['pid']; }
Zeile 1975	Zeile 2078
else { log_moderator_action(array('pids' => $posts_to_delete), $lang->multi_delete_posts);	else { log_moderator_action(array('pids' => $posts_to_delete), $lang->multi_delete_posts);
} } $plugins->run_hooks("modcp_do_modqueue_end");	} } $plugins->run_hooks("modcp_do_modqueue_end");
redirect("modcp.php?action=modqueue&type=posts", $lang->redirect_postsmoderated); }	redirect("modcp.php?action=modqueue&type=posts", $lang->redirect_postsmoderated); }
Zeile 1995	Zeile 2098
while($attachment = $db->fetch_array($query)) { if(!isset($mybb->input['attachments'][$attachment['aid']]))	while($attachment = $db->fetch_array($query)) { if(!isset($mybb->input['attachments'][$attachment['aid']]))
{	{
continue; } $action = $mybb->input['attachments'][$attachment['aid']];	continue; } $action = $mybb->input['attachments'][$attachment['aid']];
Zeile 2020	Zeile 2123
$navsep = ''; if($mybb->usergroup['canmanagemodqueue'] == 0)	$navsep = ''; if($mybb->usergroup['canmanagemodqueue'] == 0)
{ error_no_permission(); }	{ error_no_permission(); }
if($nummodqueuethreads == 0 && $nummodqueueposts == 0 && $nummodqueueattach == 0 && $mybb->usergroup['issupermod'] != 1) {	if($nummodqueuethreads == 0 && $nummodqueueposts == 0 && $nummodqueueattach == 0 && $mybb->usergroup['issupermod'] != 1) {
Zeile 2098	Zeile 2201
{ if($thread['threadusername'] != "") {	{ if($thread['threadusername'] != "") {
	$thread['threadusername'] = htmlspecialchars_uni($thread['threadusername']);
$profile_link = $thread['threadusername']; } else	$profile_link = $thread['threadusername']; } else
Zeile 2107	Zeile 2211
} else {	} else {
	$thread['username'] = htmlspecialchars_uni($thread['username']);
$profile_link = build_profile_link($thread['username'], $thread['uid']); }	$profile_link = build_profile_link($thread['username'], $thread['uid']); }
Zeile 2208	Zeile 2313
{ $altbg = alt_trow(); $post['threadsubject'] = htmlspecialchars_uni($parser->parse_badwords($post['threadsubject']));	{ $altbg = alt_trow(); $post['threadsubject'] = htmlspecialchars_uni($parser->parse_badwords($post['threadsubject']));
	$post['subject'] = htmlspecialchars_uni($parser->parse_badwords($post['subject']));
$post['threadlink'] = get_thread_link($post['tid']); $post['postlink'] = get_post_link($post['pid'], $post['tid']); $forum_link = get_forum_link($post['fid']);	$post['threadlink'] = get_thread_link($post['tid']); $post['postlink'] = get_post_link($post['pid'], $post['tid']); $forum_link = get_forum_link($post['fid']);
Zeile 2218	Zeile 2324
{ if($post['postusername'] != "") {	{ if($post['postusername'] != "") {
	$post['postusername'] = htmlspecialchars_uni($post['postusername']);
$profile_link = $post['postusername']; } else	$profile_link = $post['postusername']; } else
Zeile 2227	Zeile 2334
} else {	} else {
	$post['username'] = htmlspecialchars_uni($post['username']);
$profile_link = build_profile_link($post['username'], $post['uid']); }	$profile_link = build_profile_link($post['username'], $post['uid']); }
Zeile 2340	Zeile 2448
$attachdate = my_date('relative', $attachment['dateuploaded']);	$attachdate = my_date('relative', $attachment['dateuploaded']);
$attachment['postsubject'] = htmlspecialchars_uni($attachment['postsubject']);	$attachment['postsubject'] = htmlspecialchars_uni($parser->parse_badwords($attachment['postsubject']));
$attachment['filename'] = htmlspecialchars_uni($attachment['filename']);	$attachment['filename'] = htmlspecialchars_uni($attachment['filename']);
$attachment['threadsubject'] = htmlspecialchars_uni($attachment['threadsubject']);	$attachment['threadsubject'] = htmlspecialchars_uni($parser->parse_badwords($attachment['threadsubject']));
$attachment['filesize'] = get_friendly_size($attachment['filesize']); $link = get_post_link($attachment['pid'], $attachment['tid']) . "#pid{$attachment['pid']}"; $thread_link = get_thread_link($attachment['tid']);	$attachment['filesize'] = get_friendly_size($attachment['filesize']); $link = get_post_link($attachment['pid'], $attachment['tid']) . "#pid{$attachment['pid']}"; $thread_link = get_thread_link($attachment['tid']);
	$attachment['username'] = htmlspecialchars_uni($attachment['username']);
$profile_link = build_profile_link($attachment['username'], $attachment['uid']); eval("\$attachments .= \"".$templates->get("modcp_modqueue_attachments_attachment")."\";");	$profile_link = build_profile_link($attachment['username'], $attachment['uid']); eval("\$attachments .= \"".$templates->get("modcp_modqueue_attachments_attachment")."\";");
Zeile 2424	Zeile 2533
{ // If the user has indicated that they will return on a specific day, but not month or year, assume it is current month and year if(!$mybb->get_input('awaymonth', MyBB::INPUT_INT))	{ // If the user has indicated that they will return on a specific day, but not month or year, assume it is current month and year if(!$mybb->get_input('awaymonth', MyBB::INPUT_INT))
{	{
$mybb->input['awaymonth'] = my_date('n', $awaydate); } if(!$mybb->get_input('awayyear', MyBB::INPUT_INT))	$mybb->input['awaymonth'] = my_date('n', $awaydate); } if(!$mybb->get_input('awayyear', MyBB::INPUT_INT))
Zeile 2466	Zeile 2575
"awayreason" => '' ); }	"awayreason" => '' ); }

// Set up user handler. require_once MYBB_ROOT."inc/datahandlers/user.php"; $userhandler = new UserDataHandler('update');	// Set up user handler. require_once MYBB_ROOT."inc/datahandlers/user.php"; $userhandler = new UserDataHandler('update');
Zeile 2478	Zeile 2587
"profile_fields_editable" => true, "website" => $mybb->get_input('website'), "icq" => $mybb->get_input('icq'),	"profile_fields_editable" => true, "website" => $mybb->get_input('website'), "icq" => $mybb->get_input('icq'),
"aim" => $mybb->get_input('aim'),
"yahoo" => $mybb->get_input('yahoo'), "skype" => $mybb->get_input('skype'), "google" => $mybb->get_input('google'),	"yahoo" => $mybb->get_input('yahoo'), "skype" => $mybb->get_input('skype'), "google" => $mybb->get_input('google'),
Zeile 2491	Zeile 2599
"day" => $mybb->get_input('birthday_day', MyBB::INPUT_INT), "month" => $mybb->get_input('birthday_month', MyBB::INPUT_INT), "year" => $mybb->get_input('birthday_year', MyBB::INPUT_INT)	"day" => $mybb->get_input('birthday_day', MyBB::INPUT_INT), "month" => $mybb->get_input('birthday_month', MyBB::INPUT_INT), "year" => $mybb->get_input('birthday_year', MyBB::INPUT_INT)
);	);
if(!empty($mybb->input['usertitle']))	if(!empty($mybb->input['usertitle']))
{	{
$updated_user['usertitle'] = $mybb->get_input('usertitle');	$updated_user['usertitle'] = $mybb->get_input('usertitle');
}	}
else if(!empty($mybb->input['reverttitle']))	else if(!empty($mybb->input['reverttitle']))
{	{
$updated_user['usertitle'] = '';	$updated_user['usertitle'] = '';
}	}
if(!empty($mybb->input['remove_avatar'])) {	if(!empty($mybb->input['remove_avatar'])) {
Zeile 2509	Zeile 2617
// Set the data of the user in the datahandler. $userhandler->set_data($updated_user);	// Set the data of the user in the datahandler. $userhandler->set_data($updated_user);
$errors = '';	$errors = array();
// Validate the user and get any errors that might have occurred. if(!$userhandler->validate_user())	// Validate the user and get any errors that might have occurred. if(!$userhandler->validate_user())
Zeile 2558	Zeile 2666
require_once MYBB_ROOT."inc/functions_warnings.php"; foreach($moderator_options as $option) {	require_once MYBB_ROOT."inc/functions_warnings.php"; foreach($moderator_options as $option) {
$mybb->input[$option['time']] = $mybb->get_input($option['time'], MyBB::INPUT_INT);	${$option['time']} = $mybb->get_input($option['time'], MyBB::INPUT_INT);
$mybb->input[$option['period']] = $mybb->get_input($option['period']); if(empty($mybb->input[$option['action']])) {	$mybb->input[$option['period']] = $mybb->get_input($option['period']); if(empty($mybb->input[$option['action']])) {
Zeile 2597	Zeile 2705
elseif($suspend_length && $suspend_length != "-1") { // Temporary ban on action	elseif($suspend_length && $suspend_length != "-1") { // Temporary ban on action
$extra_user_updates[$option['update_length']] = TIME_NOW + $suspend_length; } }	$extra_user_updates[$option['update_length']] = TIME_NOW + $suspend_length; } }
elseif(!$user[$option['update_field']]) { // New suspension for this user... bad user!	elseif(!$user[$option['update_field']]) { // New suspension for this user... bad user!
Zeile 2650	Zeile 2758
if($mybb->input['action'] == "editprofile") { if($mybb->usergroup['caneditprofiles'] == 0)	if($mybb->input['action'] == "editprofile") { if($mybb->usergroup['caneditprofiles'] == 0)
{ error_no_permission(); }	{ error_no_permission(); }
add_breadcrumb($lang->mcp_nav_editprofile, "modcp.php?action=editprofile");	add_breadcrumb($lang->mcp_nav_editprofile, "modcp.php?action=editprofile");
Zeile 2660	Zeile 2768
if(!$user) { error($lang->error_nomember);	if(!$user) { error($lang->error_nomember);
}	}
// Check if the current user has permission to edit this user if(!modcp_can_manage_user($user['uid']))	// Check if the current user has permission to edit this user if(!modcp_can_manage_user($user['uid']))
{	{
error_no_permission(); }	error_no_permission(); }
if($user['website'] == "" \|\| $user['website'] == "http://")	$userperms = user_permissions($user['uid']); // Set display group $displaygroupfields = array("title", "description", "namestyle", "usertitle", "stars", "starimage", "image"); if(!$user['displaygroup']) { $user['displaygroup'] = $user['usergroup']; } $display_group = usergroup_displaygroup($user['displaygroup']); if(is_array($display_group)) { $userperms = array_merge($userperms, $display_group); } if(!my_validate_url($user['website']))
{	{
$user['website'] = "http://";	$user['website'] = '';
} if($user['icq'] != "0")	} if($user['icq'] != "0")
Zeile 2698	Zeile 2822
} // Sanitize all input	} // Sanitize all input
foreach(array('usertitle', 'website', 'icq', 'aim', 'yahoo', 'skype', 'google', 'signature', 'birthday_day', 'birthday_month', 'birthday_year') as $field)	foreach(array('usertitle', 'website', 'icq', 'yahoo', 'skype', 'google', 'signature', 'birthday_day', 'birthday_month', 'birthday_year') as $field)
{ $mybb->input[$field] = htmlspecialchars_uni($mybb->get_input($field)); }	{ $mybb->input[$field] = htmlspecialchars_uni($mybb->get_input($field)); }
// Custom user title, check to see if we have a default group title if(!$user['displaygroup']) { $user['displaygroup'] = $user['usergroup']; } $displaygroupfields = array('usertitle'); $display_group = usergroup_displaygroup($user['displaygroup']); if(!empty($display_group['usertitle']))	// Custom user title if(!empty($userperms['usertitle']))
{	{
$defaulttitle = htmlspecialchars_uni($display_group['usertitle']);	$defaulttitle = htmlspecialchars_uni($userperms['usertitle']);
} else {	} else {
Zeile 2844	Zeile 2960
{ foreach($pfcache as $profilefield) {	{ foreach($pfcache as $profilefield) {
$userfield = $code = $select = $val = $options = $expoptions = $useropts = $seloptions = '';	$userfield = $code = $select = $val = $options = $expoptions = $useropts = ''; $seloptions = array();
$profilefield['type'] = htmlspecialchars_uni($profilefield['type']); $profilefield['name'] = htmlspecialchars_uni($profilefield['name']); $profilefield['description'] = htmlspecialchars_uni($profilefield['description']);	$profilefield['type'] = htmlspecialchars_uni($profilefield['type']); $profilefield['name'] = htmlspecialchars_uni($profilefield['name']); $profilefield['description'] = htmlspecialchars_uni($profilefield['description']);
Zeile 3014	Zeile 3131
eval("\$customfields = \"".$templates->get("usercp_profile_profilefields")."\";"); }	eval("\$customfields = \"".$templates->get("usercp_profile_profilefields")."\";"); }
	$user['username'] = htmlspecialchars_uni($user['username']);
$lang->edit_profile = $lang->sprintf($lang->edit_profile, $user['username']); $profile_link = build_profile_link(format_name($user['username'], $user['usergroup'], $user['displaygroup']), $user['uid']);	$lang->edit_profile = $lang->sprintf($lang->edit_profile, $user['username']); $profile_link = build_profile_link(format_name($user['username'], $user['usergroup'], $user['displaygroup']), $user['uid']);
	$user['signature'] = htmlspecialchars_uni($user['signature']);
$codebuttons = build_mycode_inserter("signature"); // Do we mark the suspend signature box?	$codebuttons = build_mycode_inserter("signature"); // Do we mark the suspend signature box?
Zeile 3089	Zeile 3208
$suspendsignature_info = $moderateposts_info = $suspendposting_info = ''; $action_options = $modpost_options = $suspost_options = '';	$suspendsignature_info = $moderateposts_info = $suspendposting_info = ''; $action_options = $modpost_options = $suspost_options = '';
	$modopts = array();
foreach($moderator_options as $option) {	foreach($moderator_options as $option) {
$mybb->input[$option['time']] = $mybb->get_input($option['time'], MyBB::INPUT_INT);	${$option['time']} = $mybb->get_input($option['time'], MyBB::INPUT_INT);
// Display the suspension info, if this user has this option suspended if($user[$option['option']]) {	// Display the suspension info, if this user has this option suspended if($user[$option['option']]) {
Zeile 3156	Zeile 3276
} eval("\$suspend_signature = \"".$templates->get("modcp_editprofile_signature")."\";");	} eval("\$suspend_signature = \"".$templates->get("modcp_editprofile_signature")."\";");
	$user['usernotes'] = htmlspecialchars_uni($user['usernotes']);
if(!isset($newtitle)) { $newtitle = '';	if(!isset($newtitle)) { $newtitle = '';
} $plugins->run_hooks("modcp_editprofile_end");	} $birthday_year = $mybb->input['birthday_year']; $user_website = $mybb->input['website']; $user_icq = $mybb->input['icq']; $user_skype = $mybb->input['skype']; $user_google = $mybb->input['google']; $user_yahoo = $mybb->input['yahoo']; $plugins->run_hooks("modcp_editprofile_end");
eval("\$edituser = \"".$templates->get("modcp_editprofile")."\";"); output_page($edituser); }	eval("\$edituser = \"".$templates->get("modcp_editprofile")."\";"); output_page($edituser); }
Zeile 3173	Zeile 3302
if($mybb->usergroup['caneditprofiles'] == 0) { error_no_permission();	if($mybb->usergroup['caneditprofiles'] == 0) { error_no_permission();
} add_breadcrumb($lang->mcp_nav_users, "modcp.php?action=finduser");	} add_breadcrumb($lang->mcp_nav_users, "modcp.php?action=finduser");
$perpage = $mybb->get_input('perpage', MyBB::INPUT_INT); if(!$perpage \|\| $perpage <= 0) {	$perpage = $mybb->get_input('perpage', MyBB::INPUT_INT); if(!$perpage \|\| $perpage <= 0) {
Zeile 3207	Zeile 3336
break; case "postnum": $sortby = "postnum";	break; case "postnum": $sortby = "postnum";
break;	break;
case "username": $sortby = "username"; break;	case "username": $sortby = "username"; break;
Zeile 3258	Zeile 3387
$page_url = 'modcp.php?action=finduser'; foreach(array('username', 'sortby', 'order') as $field) {	$page_url = 'modcp.php?action=finduser'; foreach(array('username', 'sortby', 'order') as $field) {
$mybb->input[$field] = urlencode($mybb->get_input($field));
if(!empty($mybb->input[$field])) { $page_url .= "&{$field}=".$mybb->input[$field];	if(!empty($mybb->input[$field])) { $page_url .= "&{$field}=".$mybb->input[$field];
Zeile 3277	Zeile 3405
while($user = $db->fetch_array($query)) { $alt_row = alt_trow();	while($user = $db->fetch_array($query)) { $alt_row = alt_trow();
	$user['username'] = htmlspecialchars_uni($user['username']);
$user['username'] = format_name($user['username'], $user['usergroup'], $user['displaygroup']); $user['postnum'] = my_number_format($user['postnum']); $regdate = my_date('relative', $user['regdate']);	$user['username'] = format_name($user['username'], $user['usergroup'], $user['displaygroup']); $user['postnum'] = my_number_format($user['postnum']); $regdate = my_date('relative', $user['regdate']);
Zeile 3298	Zeile 3427
$usergroup = htmlspecialchars_uni($usergroups_cache[$user['usergroup']]['title']); eval("\$users .= \"".$templates->get("modcp_finduser_user")."\";");	$usergroup = htmlspecialchars_uni($usergroups_cache[$user['usergroup']]['title']); eval("\$users .= \"".$templates->get("modcp_finduser_user")."\";");
}	}
// No results? if(!$users)	// No results? if(!$users)
Zeile 3308	Zeile 3437
$plugins->run_hooks("modcp_finduser_end");	$plugins->run_hooks("modcp_finduser_end");
	$username = htmlspecialchars_uni($mybb->get_input('username'));
eval("\$finduser = \"".$templates->get("modcp_finduser")."\";"); output_page($finduser);	eval("\$finduser = \"".$templates->get("modcp_finduser")."\";"); output_page($finduser);
}	}
if($mybb->input['action'] == "warninglogs") {	if($mybb->input['action'] == "warninglogs") {
Zeile 3448	Zeile 3578
$per_page = (int)$mybb->input['filter']['per_page']; } $start = ($page-1) * $per_page;	$per_page = (int)$mybb->input['filter']['per_page']; } $start = ($page-1) * $per_page;
	$pages = ceil($total_warnings / $per_page); if($page > $pages) { $start = 0; $page = 1; }
// Build the base URL for pagination links $url = 'modcp.php?action=warninglogs'; if(is_array($mybb->input['filter']) && count($mybb->input['filter']))	// Build the base URL for pagination links $url = 'modcp.php?action=warninglogs'; if(is_array($mybb->input['filter']) && count($mybb->input['filter']))
Zeile 3483	Zeile 3619
while($row = $db->fetch_array($query)) { $trow = alt_trow();	while($row = $db->fetch_array($query)) { $trow = alt_trow();
	$row['username'] = htmlspecialchars_uni($row['username']);
$username = format_name($row['username'], $row['usergroup'], $row['displaygroup']); $username_link = build_profile_link($username, $row['uid']);	$username = format_name($row['username'], $row['usergroup'], $row['displaygroup']); $username_link = build_profile_link($username, $row['uid']);
	$row['mod_username'] = htmlspecialchars_uni($row['mod_username']);
$mod_username = format_name($row['mod_username'], $row['mod_usergroup'], $row['mod_displaygroup']); $mod_username_link = build_profile_link($mod_username, $row['mod_uid']);	$mod_username = format_name($row['mod_username'], $row['mod_usergroup'], $row['mod_displaygroup']); $mod_username_link = build_profile_link($mod_username, $row['mod_uid']);
$issued_date = my_date($mybb->settings['dateformat'], $row['dateline']).' '.my_date($mybb->settings['timeformat'], $row['dateline']);	$issued_date = my_date('normal', $row['dateline']);
$revoked_text = ''; if($row['daterevoked'] > 0) {	$revoked_text = ''; if($row['daterevoked'] > 0) {
Zeile 3496	Zeile 3634
} if($row['expires'] > 0) {	} if($row['expires'] > 0) {
$expire_date = my_date('relative', $row['expires'], '', 2);	$expire_date = nice_time($row['expires']-TIME_NOW);
} else {	} else {
Zeile 3522	Zeile 3660
} $plugins->run_hooks("modcp_warninglogs_end");	} $plugins->run_hooks("modcp_warninglogs_end");
	$filter_username = $mybb->input['filter']['username']; $filter_modusername = $mybb->input['filter']['mod_username']; $filter_reason = $mybb->input['filter']['reason'];
eval("\$warninglogs = \"".$templates->get("modcp_warninglogs")."\";"); output_page($warninglogs);	eval("\$warninglogs = \"".$templates->get("modcp_warninglogs")."\";"); output_page($warninglogs);
Zeile 3533	Zeile 3675
{ error_no_permission(); }	{ error_no_permission(); }

add_breadcrumb($lang->mcp_nav_ipsearch, "modcp.php?action=ipsearch"); $mybb->input['ipaddress'] = $mybb->get_input('ipaddress');	add_breadcrumb($lang->mcp_nav_ipsearch, "modcp.php?action=ipsearch"); $mybb->input['ipaddress'] = $mybb->get_input('ipaddress');
Zeile 3557	Zeile 3699
{ if(!is_array($ip_range)) {	{ if(!is_array($ip_range)) {
$post_ip_sql = "ipaddress=".$db->escape_binary($ip_range);	$post_ip_sql = "p.ipaddress=".$db->escape_binary($ip_range);
} else {	} else {
$post_ip_sql = "ipaddress BETWEEN ".$db->escape_binary($ip_range[0])." AND ".$db->escape_binary($ip_range[1]);	$post_ip_sql = "p.ipaddress BETWEEN ".$db->escape_binary($ip_range[0])." AND ".$db->escape_binary($ip_range[1]);
} }	} }
$plugins->run_hooks("modcp_ipsearch_posts_start"); if($post_ip_sql) { $query = $db->simple_select('posts', 'COUNT(pid) AS count', "$post_ip_sql AND visible >= -1");	$plugins->run_hooks("modcp_ipsearch_posts_start"); if($post_ip_sql) { $where_sql = ''; $unviewable_forums = get_unviewable_forums(true); if($unviewable_forums) { $where_sql .= " AND p.fid NOT IN ({$unviewable_forums})"; } if($inactiveforums) { $where_sql .= " AND p.fid NOT IN ({$inactiveforums})"; } // Check group permissions if we can't view threads not started by us $onlyusfids = array(); $group_permissions = forum_permissions(); foreach($group_permissions as $fid => $forumpermissions) { if(isset($forumpermissions['canonlyviewownthreads']) && $forumpermissions['canonlyviewownthreads'] == 1) { $onlyusfids[] = $fid; } } if(!empty($onlyusfids)) { $where_sql .= " AND ((t.fid IN(".implode(',', $onlyusfids).") AND t.uid='{$mybb->user['uid']}') OR t.fid NOT IN(".implode(',', $onlyusfids)."))"; } // Moderators can view unapproved/deleted posts if($mybb->usergroup['issupermod'] != 1) { $unapprove_forums = array(); $deleted_forums = array(); $visible_sql = " AND (p.visible = 1 AND t.visible = 1)"; $query = $db->simple_select("moderators", "fid, canviewunapprove, canviewdeleted", "(id='{$mybb->user['uid']}' AND isgroup='0') OR (id='{$mybb->user['usergroup']}' AND isgroup='1')"); while($moderator = $db->fetch_array($query)) { if($moderator['canviewunapprove'] == 1) { $unapprove_forums[] = $moderator['fid']; } if($moderator['canviewdeleted'] == 1) { $deleted_forums[] = $moderator['fid']; } } if(!empty($unapprove_forums)) { $visible_sql .= " OR (p.visible = 0 AND p.fid IN(".implode(',', $unapprove_forums).")) OR (t.visible = 0 AND t.fid IN(".implode(',', $unapprove_forums)."))"; } if(!empty($deleted_forums)) { $visible_sql .= " OR (p.visible = -1 AND p.fid IN(".implode(',', $deleted_forums).")) OR (t.visible = -1 AND t.fid IN(".implode(',', $deleted_forums)."))"; } } else { // Super moderators (and admins) $visible_sql = " AND p.visible >= -1"; } $query = $db->query(" SELECT COUNT(p.pid) AS count FROM ".TABLE_PREFIX."posts p LEFT JOIN ".TABLE_PREFIX."threads t ON (t.tid = p.tid) WHERE {$post_ip_sql}{$where_sql}{$visible_sql} ");
$post_results = $db->fetch_field($query, "count"); } }	$post_results = $db->fetch_field($query, "count"); } }
Zeile 3658	Zeile 3870
{ $query = $db->simple_select('users', 'username, uid, regip, lastip', $user_ip_sql, array('order_by' => 'regdate', 'order_dir' => 'DESC', 'limit_start' => $start, 'limit' => $perpage));	{ $query = $db->simple_select('users', 'username, uid, regip, lastip', $user_ip_sql, array('order_by' => 'regdate', 'order_dir' => 'DESC', 'limit_start' => $start, 'limit' => $perpage));

while($ipaddress = $db->fetch_array($query)) { $result = false;	while($ipaddress = $db->fetch_array($query)) { $result = false;
	$ipaddress['username'] = htmlspecialchars_uni($ipaddress['username']);
$profile_link = build_profile_link($ipaddress['username'], $ipaddress['uid']); $trow = alt_trow(); $ip = false;	$profile_link = build_profile_link($ipaddress['username'], $ipaddress['uid']); $trow = alt_trow(); $ip = false;
Zeile 3692	Zeile 3905
{ eval("\$results .= \"".$templates->get("modcp_ipsearch_result")."\";"); $result = true;	{ eval("\$results .= \"".$templates->get("modcp_ipsearch_result")."\";"); $result = true;
}	}
if($result) { --$post_limit; }	if($result) { --$post_limit; }
} }	} }
$post_start = 0; if($total_results > $user_results && $post_limit) {	$post_start = 0; if($total_results > $user_results && $post_limit) {
Zeile 3711	Zeile 3924
if(isset($mybb->input['search_posts']) && $post_results && (!isset($mybb->input['search_users']) \|\| (isset($mybb->input['search_users']) && $post_limit > 0))) { $ipaddresses = $tids = $uids = array();	if(isset($mybb->input['search_posts']) && $post_results && (!isset($mybb->input['search_users']) \|\| (isset($mybb->input['search_users']) && $post_limit > 0))) { $ipaddresses = $tids = $uids = array();
$query = $db->simple_select('posts', 'username AS postusername, uid, subject, pid, tid, ipaddress', "$post_ip_sql AND visible >= -1", array('order_by' => 'dateline', 'order_dir' => 'DESC', 'limit_start' => $post_start, 'limit' => $post_limit));

	$query = $db->query(" SELECT p.username AS postusername, p.uid, p.subject, p.pid, p.tid, p.ipaddress FROM ".TABLE_PREFIX."posts p LEFT JOIN ".TABLE_PREFIX."threads t ON (t.tid = p.tid) WHERE {$post_ip_sql}{$where_sql}{$visible_sql} ORDER BY p.dateline desc LIMIT {$post_start}, {$post_limit} ");
while($ipaddress = $db->fetch_array($query)) { $tids[$ipaddress['tid']] = $ipaddress['pid'];	while($ipaddress = $db->fetch_array($query)) { $tids[$ipaddress['tid']] = $ipaddress['pid'];
Zeile 3741	Zeile 3959
foreach($ipaddresses as $ipaddress) { $ip = my_inet_ntop($db->unescape_binary($ipaddress['ipaddress']));	foreach($ipaddresses as $ipaddress) { $ip = my_inet_ntop($db->unescape_binary($ipaddress['ipaddress']));
if(!$ipaddress['username']) $ipaddress['username'] = $ipaddress['postusername']; // Guest username support	if(!$ipaddress['username']) { $ipaddress['username'] = $ipaddress['postusername']; // Guest username support } $ipaddress['username'] = htmlspecialchars_uni($ipaddress['username']);
$trow = alt_trow(); if(!$ipaddress['subject']) {	$trow = alt_trow(); if(!$ipaddress['subject']) {
Zeile 3749	Zeile 3971
} $ipaddress['postlink'] = get_post_link($ipaddress['pid'], $ipaddress['tid']);	} $ipaddress['postlink'] = get_post_link($ipaddress['pid'], $ipaddress['tid']);
$ipaddress['subject'] = htmlspecialchars_uni($ipaddress['subject']);	$ipaddress['subject'] = htmlspecialchars_uni($parser->parse_badwords($ipaddress['subject']));
$ipaddress['profilelink'] = build_profile_link($ipaddress['username'], $ipaddress['uid']); eval("\$subject = \"".$templates->get("modcp_ipsearch_result_post")."\";");	$ipaddress['profilelink'] = build_profile_link($ipaddress['username'], $ipaddress['uid']); eval("\$subject = \"".$templates->get("modcp_ipsearch_result_post")."\";");
Zeile 3830	Zeile 4052
{ $ipaddress_location .= $lang->comma.htmlspecialchars_uni(utf8_encode($ip_record['city'])); }	{ $ipaddress_location .= $lang->comma.htmlspecialchars_uni(utf8_encode($ip_record['city'])); }
} }	} }
$ipaddress_host_name = htmlspecialchars_uni(@gethostbyaddr($mybb->input['ipaddress'])); // gethostbyaddr returns the same ip on failure	$ipaddress_host_name = htmlspecialchars_uni(@gethostbyaddr($mybb->input['ipaddress'])); // gethostbyaddr returns the same ip on failure
Zeile 3880	Zeile 4102
if($mybb->get_input('page') == "last") { $page = $pages;	if($mybb->get_input('page') == "last") { $page = $pages;
}	}
if($page > $pages \|\| $page <= 0) { $page = 1; } if($page)	if($page > $pages \|\| $page <= 0) { $page = 1; } if($page)
{	{
$start = ($page-1) * $perpage; } else	$start = ($page-1) * $perpage; } else
Zeile 3910	Zeile 4132
ORDER BY dateline DESC LIMIT {$start}, {$perpage} ");	ORDER BY dateline DESC LIMIT {$start}, {$perpage} ");

// Get the banned users $bannedusers = ''; while($banned = $db->fetch_array($query)) {	// Get the banned users $bannedusers = ''; while($banned = $db->fetch_array($query)) {
	$banned['username'] = htmlspecialchars_uni($banned['username']);
$profile_link = build_profile_link($banned['username'], $banned['uid']); // Only show the edit & lift links if current user created ban, or is super mod/admin	$profile_link = build_profile_link($banned['username'], $banned['uid']); // Only show the edit & lift links if current user created ban, or is super mod/admin
Zeile 3922	Zeile 4145
if($mybb->user['uid'] == $banned['admin'] \|\| !$banned['adminuser'] \|\| $mybb->usergroup['issupermod'] == 1 \|\| $mybb->usergroup['cancp'] == 1) { eval("\$edit_link = \"".$templates->get("modcp_banning_edit")."\";");	if($mybb->user['uid'] == $banned['admin'] \|\| !$banned['adminuser'] \|\| $mybb->usergroup['issupermod'] == 1 \|\| $mybb->usergroup['cancp'] == 1) { eval("\$edit_link = \"".$templates->get("modcp_banning_edit")."\";");
} $admin_profile = build_profile_link($banned['adminuser'], $banned['admin']);	} $admin_profile = build_profile_link(htmlspecialchars_uni($banned['adminuser']), $banned['admin']);
$trow = alt_trow(); if($banned['reason']) { $banned['reason'] = htmlspecialchars_uni($parser->parse_badwords($banned['reason']));	$trow = alt_trow(); if($banned['reason']) { $banned['reason'] = htmlspecialchars_uni($parser->parse_badwords($banned['reason']));
} else	} else
{ $banned['reason'] = $lang->na; }	{ $banned['reason'] = $lang->na; }
Zeile 3946	Zeile 4169
{ $banlength = $bantimes[$banned['bantime']]; $remaining = $banned['lifted']-TIME_NOW;	{ $banlength = $bantimes[$banned['bantime']]; $remaining = $banned['lifted']-TIME_NOW;

$timeremaining = nice_time($remaining, array('short' => 1, 'seconds' => false))."";	$timeremaining = nice_time($remaining, array('short' => 1, 'seconds' => false))."";
	$banned_class = ''; $ban_remaining = "{$timeremaining} {$lang->ban_remaining}"; if($remaining <= 0) { $banned_class = "imminent_banned"; $ban_remaining = $lang->ban_ending_imminently; }
if($remaining < 3600) {	if($remaining < 3600) {
$timeremaining = "<span style=\"color: red;\">({$timeremaining} {$lang->ban_remaining})</span>";	$banned_class = "high_banned";
} else if($remaining < 86400)	} else if($remaining < 86400)
{ $timeremaining = "<span style=\"color: maroon;\">({$timeremaining} {$lang->ban_remaining})</span>";	{ $banned_class = "moderate_banned";
} else if($remaining < 604800) {	} else if($remaining < 604800) {
$timeremaining = "<span style=\"color: green;\">({$timeremaining} {$lang->ban_remaining})</span>";	$banned_class = "low_banned";
} else {	} else {
$timeremaining = "({$timeremaining} {$lang->ban_remaining})";	$banned_class = "normal_banned";
}	}
	eval('$timeremaining = "'.$templates->get('modcp_banning_remaining').'";');
}	}

eval("\$bannedusers .= \"".$templates->get("modcp_banning_ban")."\";"); } if(!$bannedusers)	eval("\$bannedusers .= \"".$templates->get("modcp_banning_ban")."\";"); } if(!$bannedusers)
{	{
eval("\$bannedusers = \"".$templates->get("modcp_banning_nobanned")."\";"); }	eval("\$bannedusers = \"".$templates->get("modcp_banning_nobanned")."\";"); }
Zeile 3985	Zeile 4218
{ // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));	{ // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));

if($mybb->usergroup['canbanusers'] == 0) { error_no_permission(); } $query = $db->simple_select("banned", "*", "uid='".$mybb->get_input('uid', MyBB::INPUT_INT)."'");	if($mybb->usergroup['canbanusers'] == 0) { error_no_permission(); } $query = $db->simple_select("banned", "*", "uid='".$mybb->get_input('uid', MyBB::INPUT_INT)."'");
$ban = $db->fetch_array($query);	$ban = $db->fetch_array($query);
if(!$ban) {	if(!$ban) {
Zeile 4006	Zeile 4239
} $plugins->run_hooks("modcp_liftban_start");	} $plugins->run_hooks("modcp_liftban_start");

$query = $db->simple_select("users", "username", "uid = '{$ban['uid']}'"); $username = $db->fetch_field($query, "username");	$query = $db->simple_select("users", "username", "uid = '{$ban['uid']}'"); $username = $db->fetch_field($query, "username");
Zeile 4033	Zeile 4266
verify_post_check($mybb->get_input('my_post_key')); if($mybb->usergroup['canbanusers'] == 0)	verify_post_check($mybb->get_input('my_post_key')); if($mybb->usergroup['canbanusers'] == 0)
{	{
error_no_permission(); }	error_no_permission(); }
Zeile 4053	Zeile 4286
if($user['uid']) { $existing_ban = true;	if($user['uid']) { $existing_ban = true;
}	}
// Permission to edit this ban? if($existing_ban && $mybb->user['uid'] != $user['admin'] && $mybb->usergroup['issupermod'] != 1 && $mybb->usergroup['cancp'] != 1) { error_no_permission(); } }	// Permission to edit this ban? if($existing_ban && $mybb->user['uid'] != $user['admin'] && $mybb->usergroup['issupermod'] != 1 && $mybb->usergroup['cancp'] != 1) { error_no_permission(); } }
	$errors = array();
// Creating a new ban if(!$existing_ban)	// Creating a new ban if(!$existing_ban)
Zeile 4098	Zeile 4333
// Check banned group $usergroups_cache = $cache->read('usergroups'); $usergroup = $usergroups_cache[$mybb->get_input('usergroup', MyBB::INPUT_INT)];	// Check banned group $usergroups_cache = $cache->read('usergroups'); $usergroup = $usergroups_cache[$mybb->get_input('usergroup', MyBB::INPUT_INT)];
$query = $db->simple_select("usergroups", "gid", "isbannedgroup=1 AND gid='".$mybb->get_input('usergroup', MyBB::INPUT_INT)."'");
if(empty($usergroup['gid']) \|\| empty($usergroup['isbannedgroup'])) {	if(empty($usergroup['gid']) \|\| empty($usergroup['isbannedgroup'])) {
Zeile 4119	Zeile 4353
// Still no errors? Ban the user if(!$errors)	// Still no errors? Ban the user if(!$errors)
{	{
// Ban the user if($mybb->get_input('liftafter') == '---') {	// Ban the user if($mybb->get_input('liftafter') == '---') {
Zeile 4132	Zeile 4366
$user['dateline'] = 0; } $lifted = ban_date2timestamp($mybb->get_input('liftafter'), $user['dateline']);	$user['dateline'] = 0; } $lifted = ban_date2timestamp($mybb->get_input('liftafter'), $user['dateline']);
} $banreason = my_substr($mybb->get_input('banreason'), 0, 255);	} $banreason = my_substr($mybb->get_input('banreason'), 0, 255);
if($existing_ban) { $update_array = array(	if($existing_ban) { $update_array = array(
'gid' => $mybb->get_input('usergroup', MyBB::INPUT_INT), 'dateline' => TIME_NOW, 'bantime' => $db->escape_string($mybb->get_input('liftafter')), 'lifted' => $db->escape_string($lifted), 'reason' => $db->escape_string($banreason)	'gid' => $mybb->get_input('usergroup', MyBB::INPUT_INT), 'dateline' => TIME_NOW, 'bantime' => $db->escape_string($mybb->get_input('liftafter')), 'lifted' => $db->escape_string($lifted), 'reason' => $db->escape_string($banreason)
); $db->update_query('banned', $update_array, "uid='{$user['uid']}'");	); $db->update_query('banned', $update_array, "uid='{$user['uid']}'");
Zeile 4175	Zeile 4409
$db->update_query('users', $update_array, "uid = {$user['uid']}"); $cache->update_banned();	$db->update_query('users', $update_array, "uid = {$user['uid']}"); $cache->update_banned();

// Log edit or add ban if($existing_ban)	// Log edit or add ban if($existing_ban)
{	{
log_moderator_action(array("uid" => $user['uid'], "username" => $user['username']), $lang->edited_user_ban);	log_moderator_action(array("uid" => $user['uid'], "username" => $user['username']), $lang->edited_user_ban);
}	}
else { log_moderator_action(array("uid" => $user['uid'], "username" => $user['username']), $lang->banned_user);	else { log_moderator_action(array("uid" => $user['uid'], "username" => $user['username']), $lang->banned_user);
} $plugins->run_hooks("modcp_do_banuser_end");	} $plugins->run_hooks("modcp_do_banuser_end");
if($existing_ban)	if($existing_ban)
{	{
redirect("modcp.php?action=banning", $lang->redirect_banuser_updated); } else { redirect("modcp.php?action=banning", $lang->redirect_banuser);	redirect("modcp.php?action=banning", $lang->redirect_banuser_updated); } else { redirect("modcp.php?action=banning", $lang->redirect_banuser);
} }	} }
// Otherwise has errors, throw back to ban page else { $mybb->input['action'] = "banuser"; } }	// Otherwise has errors, throw back to ban page else { $mybb->input['action'] = "banuser"; } }

if($mybb->input['action'] == "banuser") { add_breadcrumb($lang->mcp_nav_banning, "modcp.php?action=banning");	if($mybb->input['action'] == "banuser") { add_breadcrumb($lang->mcp_nav_banning, "modcp.php?action=banning");

if($mybb->usergroup['canbanusers'] == 0)	if($mybb->usergroup['canbanusers'] == 0)
{ error_no_permission(); }	{ error_no_permission(); }
$mybb->input['uid'] = $mybb->get_input('uid', MyBB::INPUT_INT);	$mybb->input['uid'] = $mybb->get_input('uid', MyBB::INPUT_INT);
if($mybb->input['uid']) { add_breadcrumb($lang->mcp_nav_ban_user); } else { add_breadcrumb($lang->mcp_nav_editing_ban);	if($mybb->input['uid']) { add_breadcrumb($lang->mcp_nav_editing_ban); } else { add_breadcrumb($lang->mcp_nav_ban_user);
} $plugins->run_hooks("modcp_banuser_start");	} $plugins->run_hooks("modcp_banuser_start");
Zeile 4240	Zeile 4474
$banned = $db->fetch_array($query); if($banned['username']) {	$banned = $db->fetch_array($query); if($banned['username']) {
$username = htmlspecialchars_uni($banned['username']);	$username = $banned['username'] = htmlspecialchars_uni($banned['username']);
$banreason = htmlspecialchars_uni($banned['reason']); $uid = $mybb->input['uid']; $user = get_user($banned['uid']);	$banreason = htmlspecialchars_uni($banned['reason']); $uid = $mybb->input['uid']; $user = get_user($banned['uid']);
Zeile 4253	Zeile 4487
if($banned['uid'] && $mybb->user['uid'] != $banned['admin'] && $mybb->usergroup['issupermod'] != 1 && $mybb->usergroup['cancp'] != 1) { error_no_permission();	if($banned['uid'] && $mybb->user['uid'] != $banned['admin'] && $mybb->usergroup['issupermod'] != 1 && $mybb->usergroup['cancp'] != 1) { error_no_permission();
}	}
// New ban! if(!$banuser_username) { if($mybb->input['uid']) { $user = get_user($mybb->input['uid']);	// New ban! if(!$banuser_username) { if($mybb->input['uid']) { $user = get_user($mybb->input['uid']);
	$user['username'] = htmlspecialchars_uni($user['username']);
$username = $user['username']; } else	$username = $user['username']; } else
Zeile 4301	Zeile 4536
$dateline = $banned['dateline']; }	$dateline = $banned['dateline']; }
$thatime = my_date("D, jS M Y @ g:ia", ban_date2timestamp($time, $dateline));	$thatime = my_date("D, jS M Y @ {$mybb->settings['timeformat']}", ban_date2timestamp($time, $dateline));
$thattime = " ({$thatime})"; }	$thattime = " ({$thatime})"; }
Zeile 4320	Zeile 4555
if(isset($banned['gid']) && $banned['gid'] == $group['gid']) { $selected = " selected=\"selected\"";	if(isset($banned['gid']) && $banned['gid'] == $group['gid']) { $selected = " selected=\"selected\"";
}	}
$group['title'] = htmlspecialchars_uni($group['title']); eval("\$bangroup_option .= \"".$templates->get("modcp_banuser_bangroups_group")."\";"); $banned_group = $group['gid'];	$group['title'] = htmlspecialchars_uni($group['title']); eval("\$bangroup_option .= \"".$templates->get("modcp_banuser_bangroups_group")."\";"); $banned_group = $group['gid'];
Zeile 4330	Zeile 4565
} if($numgroups == 0)	} if($numgroups == 0)
{	{
error($lang->no_banned_group);	error($lang->no_banned_group);
}	}
elseif($numgroups > 1)	elseif($numgroups > 1)
{	{
eval("\$bangroups = \"".$templates->get("modcp_banuser_bangroups")."\";");	eval("\$bangroups = \"".$templates->get("modcp_banuser_bangroups")."\";");
} else {	} else {
eval("\$bangroups = \"".$templates->get("modcp_banuser_bangroups_hidden")."\";"); }	eval("\$bangroups = \"".$templates->get("modcp_banuser_bangroups_hidden")."\";"); }
Zeile 4363	Zeile 4598
{ // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));	{ // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));

$plugins->run_hooks("modcp_do_modnotes_start"); // Update Moderator Notes cache	$plugins->run_hooks("modcp_do_modnotes_start"); // Update Moderator Notes cache
Zeile 4388	Zeile 4623
if($nummodqueueposts > 0 \|\| $mybb->usergroup['issupermod'] == 1) { $bgcolor = "trow1";	if($nummodqueueposts > 0 \|\| $mybb->usergroup['issupermod'] == 1) { $bgcolor = "trow1";
}	}
else { $bgcolor = "trow2";	else { $bgcolor = "trow2";
Zeile 4416	Zeile 4651
"); $attachment = $db->fetch_array($query); $attachment['date'] = my_date('relative', $attachment['dateuploaded']);	"); $attachment = $db->fetch_array($query); $attachment['date'] = my_date('relative', $attachment['dateuploaded']);
	$attachment['username'] = htmlspecialchars_uni($attachment['username']);
$attachment['profilelink'] = build_profile_link($attachment['username'], $attachment['uid']); $attachment['link'] = get_post_link($attachment['pid'], $attachment['tid']); $attachment['filename'] = htmlspecialchars_uni($attachment['filename']);	$attachment['profilelink'] = build_profile_link($attachment['username'], $attachment['uid']); $attachment['link'] = get_post_link($attachment['pid'], $attachment['tid']); $attachment['filename'] = htmlspecialchars_uni($attachment['filename']);
Zeile 4453	Zeile 4689
"); $post = $db->fetch_array($query); $post['date'] = my_date('relative', $post['dateline']);	"); $post = $db->fetch_array($query); $post['date'] = my_date('relative', $post['dateline']);
	$post['username'] = htmlspecialchars_uni($post['username']);
$post['profilelink'] = build_profile_link($post['username'], $post['uid']); $post['link'] = get_post_link($post['pid'], $post['tid']); $post['subject'] = $post['fullsubject'] = $parser->parse_badwords($post['subject']);	$post['profilelink'] = build_profile_link($post['username'], $post['uid']); $post['link'] = get_post_link($post['pid'], $post['tid']); $post['subject'] = $post['fullsubject'] = $parser->parse_badwords($post['subject']);
Zeile 4484	Zeile 4721
$query = $db->simple_select("threads", "tid, subject, uid, username, dateline", "visible='0' {$flist_queue_threads}", array('order_by' => 'dateline', 'order_dir' => 'DESC', 'limit' => 1)); $thread = $db->fetch_array($query); $thread['date'] = my_date('relative', $thread['dateline']);	$query = $db->simple_select("threads", "tid, subject, uid, username, dateline", "visible='0' {$flist_queue_threads}", array('order_by' => 'dateline', 'order_dir' => 'DESC', 'limit' => 1)); $thread = $db->fetch_array($query); $thread['date'] = my_date('relative', $thread['dateline']);
	$thread['username'] = htmlspecialchars_uni($thread['username']);
$thread['profilelink'] = build_profile_link($thread['username'], $thread['uid']); $thread['link'] = get_thread_link($thread['tid']); $thread['subject'] = $thread['fullsubject'] = $parser->parse_badwords($thread['subject']);	$thread['profilelink'] = build_profile_link($thread['username'], $thread['uid']); $thread['link'] = get_thread_link($thread['tid']); $thread['subject'] = $thread['fullsubject'] = $parser->parse_badwords($thread['subject']);
Zeile 4517	Zeile 4755
$where = ''; if($tflist_modlog) {	$where = ''; if($tflist_modlog) {
$where = "WHERE (t.fid <> 0 {$tflist_modlog}) OR (!l.fid)";	$where = "WHERE (t.fid <> 0 {$tflist_modlog}) OR (l.fid <> 0)";
} $query = $db->query("	} $query = $db->query("
Zeile 4539	Zeile 4777
$logitem['action'] = htmlspecialchars_uni($logitem['action']); $log_date = my_date('relative', $logitem['dateline']); $trow = alt_trow();	$logitem['action'] = htmlspecialchars_uni($logitem['action']); $log_date = my_date('relative', $logitem['dateline']); $trow = alt_trow();
	$logitem['username'] = htmlspecialchars_uni($logitem['username']);
$username = format_name($logitem['username'], $logitem['usergroup'], $logitem['displaygroup']); $logitem['profilelink'] = build_profile_link($username, $logitem['uid']); $logitem['ipaddress'] = my_inet_ntop($db->unescape_binary($logitem['ipaddress'])); if($logitem['tsubject']) {	$username = format_name($logitem['username'], $logitem['usergroup'], $logitem['displaygroup']); $logitem['profilelink'] = build_profile_link($username, $logitem['uid']); $logitem['ipaddress'] = my_inet_ntop($db->unescape_binary($logitem['ipaddress'])); if($logitem['tsubject']) {
$logitem['tsubject'] = htmlspecialchars_uni($logitem['tsubject']);	$logitem['tsubject'] = htmlspecialchars_uni($parser->parse_badwords($logitem['tsubject']));
$logitem['thread'] = get_thread_link($logitem['tid']); eval("\$information .= \"".$templates->get("modcp_modlogs_result_thread")."\";"); }	$logitem['thread'] = get_thread_link($logitem['tid']); eval("\$information .= \"".$templates->get("modcp_modlogs_result_thread")."\";"); }
Zeile 4556	Zeile 4795
} if($logitem['psubject']) {	} if($logitem['psubject']) {
$logitem['psubject'] = htmlspecialchars_uni($logitem['psubject']);	$logitem['psubject'] = htmlspecialchars_uni($parser->parse_badwords($logitem['psubject']));
$logitem['post'] = get_post_link($logitem['pid']); eval("\$information .= \"".$templates->get("modcp_modlogs_result_post")."\";"); }	$logitem['post'] = get_post_link($logitem['pid']); eval("\$information .= \"".$templates->get("modcp_modlogs_result_post")."\";"); }
Zeile 4571	Zeile 4810
} if($data['aid']) {	} if($data['aid']) {
$data['subject'] = htmlspecialchars_uni($data['subject']);	$data['subject'] = htmlspecialchars_uni($parser->parse_badwords($data['subject']));
$data['announcement'] = get_announcement_link($data['aid']); eval("\$information .= \"".$templates->get("modcp_modlogs_result_announcement")."\";"); } }	$data['announcement'] = get_announcement_link($data['aid']); eval("\$information .= \"".$templates->get("modcp_modlogs_result_announcement")."\";"); } }
	$plugins->run_hooks("modcp_modlogs_result");
eval("\$modlogresults .= \"".$templates->get("modcp_modlogs_result")."\";"); }	eval("\$modlogresults .= \"".$templates->get("modcp_modlogs_result")."\";"); }
Zeile 4611	Zeile 4852
$bannedusers = ''; foreach($banned_cache as $banned) {	$bannedusers = ''; foreach($banned_cache as $banned) {
	$banned['username'] = htmlspecialchars_uni($banned['username']);
$profile_link = build_profile_link($banned['username'], $banned['uid']); // Only show the edit & lift links if current user created ban, or is super mod/admin	$profile_link = build_profile_link($banned['username'], $banned['uid']); // Only show the edit & lift links if current user created ban, or is super mod/admin
Zeile 4620	Zeile 4862
eval("\$edit_link = \"".$templates->get("modcp_banning_edit")."\";"); }	eval("\$edit_link = \"".$templates->get("modcp_banning_edit")."\";"); }
$admin_profile = build_profile_link($banned['adminuser'], $banned['admin']);	$admin_profile = build_profile_link(htmlspecialchars_uni($banned['adminuser']), $banned['admin']);
$trow = alt_trow();	$trow = alt_trow();
Zeile 4644	Zeile 4886
$remaining = $banned['remaining']; $timeremaining = nice_time($remaining, array('short' => 1, 'seconds' => false))."";	$remaining = $banned['remaining']; $timeremaining = nice_time($remaining, array('short' => 1, 'seconds' => false))."";
	$banned_class = ''; $ban_remaining = "{$timeremaining} {$lang->ban_remaining}";
if($remaining <= 0)	if($remaining <= 0)
{ $timeremaining = "<span style=\"color: red;\">({$lang->ban_ending_imminently})</span>";	{ $banned_class = "imminent_banned"; $ban_remaining = $lang->ban_ending_imminently;
} else if($remaining < 3600) {	} else if($remaining < 3600) {
$timeremaining = "<span style=\"color: red;\">({$timeremaining} {$lang->ban_remaining})</span>"; } else if($remaining < 86400) { $timeremaining = "<span style=\"color: maroon;\">({$timeremaining} {$lang->ban_remaining})</span>";	$banned_class = "high_banned"; } else if($remaining < 86400) { $banned_class = "moderate_banned";
} else if($remaining < 604800)	} else if($remaining < 604800)
{ $timeremaining = "<span style=\"color: green;\">({$timeremaining} {$lang->ban_remaining})</span>"; }	{ $banned_class = "low_banned"; }
else {	else {
$timeremaining = "({$timeremaining} {$lang->ban_remaining})";	$banned_class = "normal_banned";
}	}
	eval('$timeremaining = "'.$templates->get('modcp_banning_remaining').'";');
} eval("\$bannedusers .= \"".$templates->get("modcp_banning_ban")."\";");	} eval("\$bannedusers .= \"".$templates->get("modcp_banning_ban")."\";");