Vergleich usercp.php - 1.8.22 - 1.8.26

if($mybb->user['uid'] == 0 || $mybb->usergroup['canusercp'] == 0)
{
	error_no_permission();

if($mybb->user['uid'] == 0 || $mybb->usergroup['canusercp'] == 0)
{
	error_no_permission();

}

$errors = '';

}

$errors = '';

{
	// Verify incoming POST request
	verify_post_check($mybb->get_input('my_post_key'));

{
	// Verify incoming POST request
	verify_post_check($mybb->get_input('my_post_key'));

	$plugins->run_hooks("usercp_do_profile_start");

	$plugins->run_hooks("usercp_do_profile_start");

	require_once MYBB_ROOT."inc/datahandlers/user.php";
	$userhandler = new UserDataHandler("update");

	require_once MYBB_ROOT."inc/datahandlers/user.php";
	$userhandler = new UserDataHandler("update");

		"uid" => $mybb->user['uid'],
		"postnum" => $mybb->user['postnum'],
		"usergroup" => $mybb->user['usergroup'],

		"uid" => $mybb->user['uid'],
		"postnum" => $mybb->user['postnum'],
		"usergroup" => $mybb->user['usergroup'],

		"birthdayprivacy" => $mybb->get_input('birthdayprivacy'),
		"away" => $away,
		"profile_fields" => $mybb->get_input('profile_fields', MyBB::INPUT_ARRAY)

		"birthdayprivacy" => $mybb->get_input('birthdayprivacy'),
		"away" => $away,
		"profile_fields" => $mybb->get_input('profile_fields', MyBB::INPUT_ARRAY)

		if($mybb->settings[$csetting] == '')

		if($mybb->settings[$csetting] == '')

		}

		if(!is_member($mybb->settings[$csetting]))
		{
			continue;

		}

		if(!is_member($mybb->settings[$csetting]))
		{
			continue;

		if($cfield == 'icq')
		{
			$user[$cfield] = $mybb->get_input($cfield, 1);

		if($cfield == 'icq')
		{
			$user[$cfield] = $mybb->get_input($cfield, 1);

		}
		else
		{
			$user[$cfield] = $mybb->get_input($cfield);

		}
		else
		{
			$user[$cfield] = $mybb->get_input($cfield);

		}
	}

	if($mybb->usergroup['canchangewebsite'] == 1)
	{
		$user['website'] = $mybb->get_input('website');

		}
	}

	if($mybb->usergroup['canchangewebsite'] == 1)
	{
		$user['website'] = $mybb->get_input('website');

	if($mybb->usergroup['cancustomtitle'] == 1)
	{
		if($mybb->get_input('usertitle') != '')
		{
			$user['usertitle'] = $mybb->get_input('usertitle');

	if($mybb->usergroup['cancustomtitle'] == 1)
	{
		if($mybb->get_input('usertitle') != '')
		{
			$user['usertitle'] = $mybb->get_input('usertitle');

		elseif(!empty($mybb->input['reverttitle']))
		{
			$user['usertitle'] = '';
		}
	}
	$userhandler->set_data($user);

		elseif(!empty($mybb->input['reverttitle']))
		{
			$user['usertitle'] = '';
		}
	}
	$userhandler->set_data($user);

	if(!$userhandler->validate_user())
	{
		$errors = $userhandler->get_friendly_errors();

	if(!$userhandler->validate_user())
	{
		$errors = $userhandler->get_friendly_errors();

		$errors = inline_error($errors);
		$mybb->input['action'] = "profile";

		$errors = inline_error($errors);
		$mybb->input['action'] = "profile";

		$userhandler->update_user();

		$plugins->run_hooks("usercp_do_profile_end");

		$userhandler->update_user();

		$plugins->run_hooks("usercp_do_profile_end");

		$user = $mybb->user;
		$bday = explode("-", $user['birthday']);
		if(!isset($bday[1]))

		$user = $mybb->user;
		$bday = explode("-", $user['birthday']);
		if(!isset($bday[1]))

			$bday[1] = 0;

			$bday[1] = 0;

		if(!isset($bday[2]))
		{
			$bday[2] = '';

		if(!isset($bday[2]))
		{
			$bday[2] = '';

	$plugins->run_hooks("usercp_profile_start");

	$bdaydaysel = '';
	for($day = 1; $day <= 31; ++$day)
	{
		if($bday[0] == $day)

	$plugins->run_hooks("usercp_profile_start");

	$bdaydaysel = '';
	for($day = 1; $day <= 31; ++$day)
	{
		if($bday[0] == $day)

			$selected = "selected=\"selected\"";

			$selected = "selected=\"selected\"";

		else
		{
			$selected = '';
		}

		else
		{
			$selected = '';
		}

		eval("\$bdaydaysel .= \"".$templates->get("usercp_profile_day")."\";");
	}

		eval("\$bdaydaysel .= \"".$templates->get("usercp_profile_day")."\";");
	}

	if($user['birthdayprivacy'] == 'all' || !$user['birthdayprivacy'])
	{
		$allselected = " selected=\"selected\"";

	if($user['birthdayprivacy'] == 'all' || !$user['birthdayprivacy'])
	{
		$allselected = " selected=\"selected\"";

	elseif($user['birthdayprivacy'] == 'none')
	{
		$noneselected = " selected=\"selected\"";

	elseif($user['birthdayprivacy'] == 'none')
	{
		$noneselected = " selected=\"selected\"";

	if($user['icq'] != "0")
	{
		$user['icq'] = (int)$user['icq'];

	if($user['icq'] != "0")
	{
		$user['icq'] = (int)$user['icq'];

	if($user['icq'] == 0)
	{

	if($user['icq'] == 0)
	{

		$contact_fields[$cfield] = '';
		$csetting = 'allow'.$cfield.'field';
		if($mybb->settings[$csetting] == '')

		$contact_fields[$cfield] = '';
		$csetting = 'allow'.$cfield.'field';
		if($mybb->settings[$csetting] == '')

		if(!is_member($mybb->settings[$csetting]))
		{
			continue;
		}

		if(!is_member($mybb->settings[$csetting]))
		{
			continue;
		}

		$cfieldsshow = true;

		$cfieldsshow = true;

		$lang_string = 'contact_field_'.$cfield;
		$lang_string = $lang->{$lang_string};
		$cfvalue = htmlspecialchars_uni($user[$cfield]);

		eval('$contact_fields[$cfield] = "'.$templates->get('usercp_profile_contact_fields_field').'";');

		$lang_string = 'contact_field_'.$cfield;
		$lang_string = $lang->{$lang_string};
		$cfvalue = htmlspecialchars_uni($user[$cfield]);

		eval('$contact_fields[$cfield] = "'.$templates->get('usercp_profile_contact_fields_field').'";');

	if($cfieldsshow)
	{

	if($cfieldsshow)
	{

				$userfield = $user[$field];
			}
			if($type == "multiselect")

				$userfield = $user[$field];
			}
			if($type == "multiselect")

				{
					foreach($useropts as $key => $val)
					{
						$val = htmlspecialchars_uni($val);
						$seloptions[$val] = $val;
					}

				{
					foreach($useropts as $key => $val)
					{
						$val = htmlspecialchars_uni($val);
						$seloptions[$val] = $val;
					}

					if(!$profilefield['length'])
					{
						$profilefield['length'] = 3;
					}

					eval("\$code = \"".$templates->get("usercp_profile_profilefields_multiselect")."\";");

					if(!$profilefield['length'])
					{
						$profilefield['length'] = 3;
					}

					eval("\$code = \"".$templates->get("usercp_profile_profilefields_multiselect")."\";");

			elseif($type == "select")
			{
				$expoptions = explode("\n", $options);

			elseif($type == "select")
			{
				$expoptions = explode("\n", $options);

						{
							$sel = " selected=\"selected\"";
						}

						{
							$sel = " selected=\"selected\"";
						}

						eval("\$select .= \"".$templates->get("usercp_profile_profilefields_select_option")."\";");
					}
					if(!$profilefield['length'])

						eval("\$select .= \"".$templates->get("usercp_profile_profilefields_select_option")."\";");
					}
					if(!$profilefield['length'])

				}
			}
			elseif($type == "radio")

				}
			}
			elseif($type == "radio")

				{
					foreach($expoptions as $key => $val)
					{

				{
					foreach($expoptions as $key => $val)
					{

			{
				$newtitle = htmlspecialchars_uni($user['usertitle']);
				$user['usertitle'] = $mybb->user['usertitle'];

			{
				$newtitle = htmlspecialchars_uni($user['usertitle']);
				$user['usertitle'] = $mybb->user['usertitle'];

		$user['usertitle'] = htmlspecialchars_uni($user['usertitle']);

		$currentcustom = $reverttitle = '';
		if(!empty($mybb->user['usertitle']))
		{
			eval("\$currentcustom = \"".$templates->get("usercp_profile_customtitle_currentcustom")."\";");

		$user['usertitle'] = htmlspecialchars_uni($user['usertitle']);

		$currentcustom = $reverttitle = '';
		if(!empty($mybb->user['usertitle']))
		{
			eval("\$currentcustom = \"".$templates->get("usercp_profile_customtitle_currentcustom")."\";");

			if($mybb->user['usertitle'] != $mybb->usergroup['usertitle'])
			{
				eval("\$reverttitle = \"".$templates->get("usercp_profile_customtitle_reverttitle")."\";");
			}
		}

			if($mybb->user['usertitle'] != $mybb->usergroup['usertitle'])
			{
				eval("\$reverttitle = \"".$templates->get("usercp_profile_customtitle_reverttitle")."\";");
			}
		}

		eval("\$customtitle = \"".$templates->get("usercp_profile_customtitle")."\";");

		eval("\$customtitle = \"".$templates->get("usercp_profile_customtitle")."\";");

	else
	{
		$customtitle = "";

	else
	{
		$customtitle = "";

	if($mybb->usergroup['canchangewebsite'] == 1)
	{
		eval("\$website = \"".$templates->get("usercp_profile_website")."\";");

	if($mybb->usergroup['canchangewebsite'] == 1)
	{
		eval("\$website = \"".$templates->get("usercp_profile_website")."\";");

{
	// Verify incoming POST request
	verify_post_check($mybb->get_input('my_post_key'));

{
	// Verify incoming POST request
	verify_post_check($mybb->get_input('my_post_key'));

	$plugins->run_hooks("usercp_do_options_start");

	$plugins->run_hooks("usercp_do_options_start");

	require_once MYBB_ROOT."inc/datahandlers/user.php";
	$userhandler = new UserDataHandler("update");

	require_once MYBB_ROOT."inc/datahandlers/user.php";
	$userhandler = new UserDataHandler("update");

		"uid" => $mybb->user['uid'],
		"style" => $mybb->get_input('style', MyBB::INPUT_INT),
		"dateformat" => $mybb->get_input('dateformat', MyBB::INPUT_INT),

		"uid" => $mybb->user['uid'],
		"style" => $mybb->get_input('style', MyBB::INPUT_INT),
		"dateformat" => $mybb->get_input('dateformat', MyBB::INPUT_INT),

		"language" => $mybb->get_input('language'),
		'usergroup'	=> $mybb->user['usergroup'],
		'additionalgroups'	=> $mybb->user['additionalgroups']

		"language" => $mybb->get_input('language'),
		'usergroup'	=> $mybb->user['usergroup'],
		'additionalgroups'	=> $mybb->user['additionalgroups']

	$user['options'] = array(
		"allownotices" => $mybb->get_input('allownotices', MyBB::INPUT_INT),

	$user['options'] = array(
		"allownotices" => $mybb->get_input('allownotices', MyBB::INPUT_INT),

if($mybb->input['action'] == "options")
{

if($mybb->input['action'] == "options")
{

	if($errors != '')

	if($errors != '')

		$user = $mybb->input;

		$user = $mybb->input;

	else

	else

		$user = $mybb->user;
	}

		$user = $mybb->user;
	}

	$languages = $lang->get_languages();
	$board_language = $langoptions = '';
	if(count($languages) > 1)

	$languages = $lang->get_languages();
	$board_language = $langoptions = '';
	if(count($languages) > 1)

		foreach($languages as $name => $language)
		{
			$language = htmlspecialchars_uni($language);

		foreach($languages as $name => $language)
		{
			$language = htmlspecialchars_uni($language);

	if(isset($user['receivefrombuddy']) && $user['receivefrombuddy'] == 1)
	{
		$receivefrombuddycheck = "checked=\"checked\"";

	if(isset($user['receivefrombuddy']) && $user['receivefrombuddy'] == 1)
	{
		$receivefrombuddycheck = "checked=\"checked\"";

		$receivefrombuddycheck = "";

		$receivefrombuddycheck = "";

		$pmnoticecheck = " checked=\"checked\"";
	}
	else
	{
		$pmnoticecheck = "";

		$pmnoticecheck = " checked=\"checked\"";
	}
	else
	{
		$pmnoticecheck = "";

	$dst_auto_selected = $dst_enabled_selected = $dst_disabled_selected = '';
	if(isset($user['dstcorrection']) && $user['dstcorrection'] == 2)
	{

	$dst_auto_selected = $dst_enabled_selected = $dst_disabled_selected = '';
	if(isset($user['dstcorrection']) && $user['dstcorrection'] == 2)
	{

	else
	{
		$dst_disabled_selected = "selected=\"selected\"";

	else
	{
		$dst_disabled_selected = "selected=\"selected\"";

		$showcodebuttonscheck = "checked=\"checked\"";
	}
	else
	{
		$showcodebuttonscheck = "";

		$showcodebuttonscheck = "checked=\"checked\"";
	}
	else
	{
		$showcodebuttonscheck = "";

	if(isset($user['sourceeditor']) && $user['sourceeditor'] == 1)
	{

	if(isset($user['sourceeditor']) && $user['sourceeditor'] == 1)
	{

	if(isset($user['showredirect']) && $user['showredirect'] != 0)
	{
		$showredirectcheck = "checked=\"checked\"";

	if(isset($user['showredirect']) && $user['showredirect'] != 0)
	{
		$showredirectcheck = "checked=\"checked\"";

		$showredirectcheck = "";

		$showredirectcheck = "";

	if(isset($user['pmnotify']) && $user['pmnotify'] != 0)

	if(isset($user['pmnotify']) && $user['pmnotify'] != 0)

		$pmnotifycheck = "checked=\"checked\"";

		$pmnotifycheck = "checked=\"checked\"";

		$pmnotifycheck = '';
	}

	if(isset($user['buddyrequestspm']) && $user['buddyrequestspm'] != 0)
	{
		$buddyrequestspmcheck = "checked=\"checked\"";

		$pmnotifycheck = '';
	}

	if(isset($user['buddyrequestspm']) && $user['buddyrequestspm'] != 0)
	{
		$buddyrequestspmcheck = "checked=\"checked\"";

		$buddyrequestspmcheck = '';
	}

	if(isset($user['buddyrequestsauto']) && $user['buddyrequestsauto'] != 0)
	{
		$buddyrequestsautocheck = "checked=\"checked\"";

		$buddyrequestspmcheck = '';
	}

	if(isset($user['buddyrequestsauto']) && $user['buddyrequestsauto'] != 0)
	{
		$buddyrequestsautocheck = "checked=\"checked\"";

	else
	{
		$buddyrequestsautocheck = '';
	}

	if(!isset($user['threadmode']) || ($user['threadmode'] != "threaded" && $user['threadmode'] != "linear"))

	else
	{
		$buddyrequestsautocheck = '';
	}

	if(!isset($user['threadmode']) || ($user['threadmode'] != "threaded" && $user['threadmode'] != "linear"))

		$user['threadmode'] = ''; // Leave blank to show default
	}

		$user['threadmode'] = ''; // Leave blank to show default
	}

	$date_format_options = $dateformat = '';
	foreach($date_formats as $key => $format)

	$date_format_options = $dateformat = '';
	foreach($date_formats as $key => $format)

		if(isset($user['dateformat']) && $user['dateformat'] == $key)
		{
			$selected = " selected=\"selected\"";

		if(isset($user['dateformat']) && $user['dateformat'] == $key)
		{
			$selected = " selected=\"selected\"";

		$timeformat = my_date($format, TIME_NOW, "", 0);
		eval("\$time_format_options .= \"".$templates->get("usercp_options_time_format")."\";");

		$timeformat = my_date($format, TIME_NOW, "", 0);
		eval("\$time_format_options .= \"".$templates->get("usercp_options_time_format")."\";");

	$tzselect = build_timezone_select("timezoneoffset", $mybb->user['timezone'], true);

	$pms_from_buddys = '';

	$tzselect = build_timezone_select("timezoneoffset", $mybb->user['timezone'], true);

	$pms_from_buddys = '';

			"email" => $mybb->get_input('email'),
			"email2" => $mybb->get_input('email2')
		);

			"email" => $mybb->get_input('email'),
			"email2" => $mybb->get_input('email2')
		);

		{
			$errors = $userhandler->get_friendly_errors();
		}

		{
			$errors = $userhandler->get_friendly_errors();
		}

	// Verify incoming POST request
	verify_post_check($mybb->get_input('my_post_key'));

	// Verify incoming POST request
	verify_post_check($mybb->get_input('my_post_key'));

	$errors = array();

	$plugins->run_hooks("usercp_do_password_start");
	if(validate_password_from_uid($mybb->user['uid'], $mybb->get_input('oldpassword')) == false)

	$errors = array();

	$plugins->run_hooks("usercp_do_password_start");
	if(validate_password_from_uid($mybb->user['uid'], $mybb->get_input('oldpassword')) == false)

		$errors[] = $lang->error_invalidpassword;
	}
	else

		$errors[] = $lang->error_invalidpassword;
	}
	else

		// Set up user handler.
		require_once MYBB_ROOT."inc/datahandlers/user.php";
		$userhandler = new UserDataHandler("update");

		// Set up user handler.
		require_once MYBB_ROOT."inc/datahandlers/user.php";
		$userhandler = new UserDataHandler("update");

			"uid" => $mybb->user['uid'],
			"password" => $mybb->get_input('password'),
			"password2" => $mybb->get_input('password2')

			"uid" => $mybb->user['uid'],
			"password" => $mybb->get_input('password'),
			"password2" => $mybb->get_input('password2')

		$userhandler->set_data($user);

		$userhandler->set_data($user);

			$mail_message = $lang->sprintf($lang->email_changepassword, $mybb->user['username'], $mybb->user['email'], $mybb->settings['bbname'], $mybb->settings['bburl']);
			$lang->emailsubject_changepassword = $lang->sprintf($lang->emailsubject_changepassword, $mybb->settings['bbname']);
			my_mail($mybb->user['email'], $lang->emailsubject_changepassword, $mail_message);

			$mail_message = $lang->sprintf($lang->email_changepassword, $mybb->user['username'], $mybb->user['email'], $mybb->settings['bbname'], $mybb->settings['bburl']);
			$lang->emailsubject_changepassword = $lang->sprintf($lang->emailsubject_changepassword, $mybb->settings['bbname']);
			my_mail($mybb->user['email'], $lang->emailsubject_changepassword, $mail_message);

			$plugins->run_hooks("usercp_do_password_end");
			redirect("usercp.php?action=password", $lang->redirect_passwordupdated);
		}

			$plugins->run_hooks("usercp_do_password_end");
			redirect("usercp.php?action=password", $lang->redirect_passwordupdated);
		}

if($mybb->input['action'] == "password")
{
	$plugins->run_hooks("usercp_password");

if($mybb->input['action'] == "password")
{
	$plugins->run_hooks("usercp_password");

	eval("\$editpassword = \"".$templates->get("usercp_password")."\";");
	output_page($editpassword);
}

	eval("\$editpassword = \"".$templates->get("usercp_password")."\";");
	output_page($editpassword);
}

	$errors = array();

	$errors = array();

	if($mybb->usergroup['canchangename'] != 1)
	{
		error_no_permission();

	if($mybb->usergroup['canchangename'] != 1)
	{
		error_no_permission();

	if(validate_password_from_uid($mybb->user['uid'], $mybb->get_input('password')) == false)

	if(validate_password_from_uid($mybb->user['uid'], $mybb->get_input('password')) == false)

		$errors[] = $lang->error_invalidpassword;

		$errors[] = $lang->error_invalidpassword;

		// Set up user handler.
		require_once MYBB_ROOT."inc/datahandlers/user.php";
		$userhandler = new UserDataHandler("update");

		// Set up user handler.
		require_once MYBB_ROOT."inc/datahandlers/user.php";
		$userhandler = new UserDataHandler("update");

			"uid" => $mybb->user['uid'],
			"username" => $mybb->get_input('username')

			"uid" => $mybb->user['uid'],
			"username" => $mybb->get_input('username')

		$userhandler->set_data($user);

		if(!$userhandler->validate_user())

		$userhandler->set_data($user);

		if(!$userhandler->validate_user())

			$userhandler->update_user();
			$plugins->run_hooks("usercp_do_changename_end");
			redirect("usercp.php?action=changename", $lang->redirect_namechanged);

			$userhandler->update_user();
			$plugins->run_hooks("usercp_do_changename_end");
			redirect("usercp.php?action=changename", $lang->redirect_namechanged);

		}
	}
	if(count($errors) > 0)

		}
	}
	if(count($errors) > 0)

	if($mybb->usergroup['canchangename'] != 1)
	{
		error_no_permission();

	if($mybb->usergroup['canchangename'] != 1)
	{
		error_no_permission();

	// Coming back to this page after one or more errors were experienced, show field the user previously entered (with the exception of the password)
	if($errors)
	{

	// Coming back to this page after one or more errors were experienced, show field the user previously entered (with the exception of the password)
	if($errors)
	{

	eval("\$changename = \"".$templates->get("usercp_changename")."\";");
	output_page($changename);

	eval("\$changename = \"".$templates->get("usercp_changename")."\";");
	output_page($changename);

if($mybb->input['action'] == "do_subscriptions")
{
	// Verify incoming POST request
	verify_post_check($mybb->get_input('my_post_key'));

if($mybb->input['action'] == "do_subscriptions")
{
	// Verify incoming POST request
	verify_post_check($mybb->get_input('my_post_key'));

	if(!isset($mybb->input['check']) || !is_array($mybb->input['check']))
	{
		error($lang->no_subscriptions_selected);
	}

	if(!isset($mybb->input['check']) || !is_array($mybb->input['check']))
	{
		error($lang->no_subscriptions_selected);
	}

	// Clean input - only accept integers thanks!
	$mybb->input['check'] = array_map('intval', $mybb->get_input('check', MyBB::INPUT_ARRAY));

	// Clean input - only accept integers thanks!
	$mybb->input['check'] = array_map('intval', $mybb->get_input('check', MyBB::INPUT_ARRAY));

		{
			$new_notification = 2;
		}

		{
			$new_notification = 2;
		}

		// Update
		$update_array = array("notification" => $new_notification);
		$db->update_query("threadsubscriptions", $update_array, "tid IN ($tids) AND uid='{$mybb->user['uid']}'");

		// Update
		$update_array = array("notification" => $new_notification);
		$db->update_query("threadsubscriptions", $update_array, "tid IN ($tids) AND uid='{$mybb->user['uid']}'");

	}

	// Do Multi Pages

	}

	// Do Multi Pages

		SELECT COUNT(ts.tid) as threads
		FROM ".TABLE_PREFIX."threadsubscriptions ts
		LEFT JOIN ".TABLE_PREFIX."threads t ON (t.tid = ts.tid)

		SELECT COUNT(ts.tid) as threads
		FROM ".TABLE_PREFIX."threadsubscriptions ts
		LEFT JOIN ".TABLE_PREFIX."threads t ON (t.tid = ts.tid)

	{
		$start = 0;
		$page = 1;

	{
		$start = 0;
		$page = 1;

	$end = $start + $perpage;
	$lower = $start+1;
	$upper = $end;

	$end = $start + $perpage;
	$lower = $start+1;
	$upper = $end;

		{
			// Hmm, you don't have permission to view this thread - unsubscribe!
			$del_subscriptions[] = $subscription['sid'];

		{
			// Hmm, you don't have permission to view this thread - unsubscribe!
			$del_subscriptions[] = $subscription['sid'];

		elseif($subscription['tid'])
		{
			$subscriptions[$subscription['tid']] = $subscription;

		elseif($subscription['tid'])
		{
			$subscriptions[$subscription['tid']] = $subscription;

		if($sids)
		{
			$db->delete_query("threadsubscriptions", "sid IN ({$sids}) AND uid='{$mybb->user['uid']}'");

		if($sids)
		{
			$db->delete_query("threadsubscriptions", "sid IN ({$sids}) AND uid='{$mybb->user['uid']}'");

		$threadcount = $threadcount - count($del_subscriptions);

		$threadcount = $threadcount - count($del_subscriptions);

			WHERE f.active != 0
			ORDER BY pid, disporder
		");

			WHERE f.active != 0
			ORDER BY pid, disporder
		");

		while($forum = $db->fetch_array($query))
		{
			$readforums[$forum['fid']] = $forum['lastread'];

		while($forum = $db->fetch_array($query))
		{
			$readforums[$forum['fid']] = $forum['lastread'];

			while($readthread = $db->fetch_array($query))
			{
				$subscriptions[$readthread['tid']]['lastread'] = $readthread['dateline'];

			while($readthread = $db->fetch_array($query))
			{
				$subscriptions[$readthread['tid']]['lastread'] = $readthread['dateline'];

		}

		}

		$icon_cache = $cache->read("posticons");
		$threadprefixes = build_prefixes();

		$icon_cache = $cache->read("posticons");
		$threadprefixes = build_prefixes();

		$threads = '';

		$threads = '';

		// Now we can build our subscription list
		foreach($subscriptions as $thread)
		{

		// Now we can build our subscription list
		foreach($subscriptions as $thread)
		{

			if($thread['prefix'] != 0 && !empty($threadprefixes[$thread['prefix']]))
			{
				$thread['threadprefix'] = $threadprefixes[$thread['prefix']]['displaystyle'].' ';

			if($thread['prefix'] != 0 && !empty($threadprefixes[$thread['prefix']]))
			{
				$thread['threadprefix'] = $threadprefixes[$thread['prefix']]['displaystyle'].' ';

			// Sanitize
			$thread['subject'] = $parser->parse_badwords($thread['subject']);
			$thread['subject'] = htmlspecialchars_uni($thread['subject']);

			// Sanitize
			$thread['subject'] = $parser->parse_badwords($thread['subject']);
			$thread['subject'] = htmlspecialchars_uni($thread['subject']);

			// Build our links
			$thread['threadlink'] = get_thread_link($thread['tid']);
			$thread['lastpostlink'] = get_thread_link($thread['tid'], 0, "lastpost");

			// Build our links
			$thread['threadlink'] = get_thread_link($thread['tid']);
			$thread['lastpostlink'] = get_thread_link($thread['tid'], 0, "lastpost");

			// Fetch the thread icon if we have one
			if($thread['icon'] > 0 && $icon_cache[$thread['icon']])
			{

			// Fetch the thread icon if we have one
			if($thread['icon'] > 0 && $icon_cache[$thread['icon']])
			{

			$lastread = 0;

			if($mybb->settings['threadreadcut'] > 0)

			$lastread = 0;

			if($mybb->settings['threadreadcut'] > 0)

				$forum_read = $readforums[$thread['fid']];

				$read_cutoff = TIME_NOW-$mybb->settings['threadreadcut']*60*60*24;
				if($forum_read == 0 || $forum_read < $read_cutoff)
				{
					$forum_read = $read_cutoff;

				$forum_read = $readforums[$thread['fid']];

				$read_cutoff = TIME_NOW-$mybb->settings['threadreadcut']*60*60*24;
				if($forum_read == 0 || $forum_read < $read_cutoff)
				{
					$forum_read = $read_cutoff;

			}

			$cutoff = 0;
			if($mybb->settings['threadreadcut'] > 0 && $thread['lastpost'] > $forum_read)
			{
				$cutoff = TIME_NOW-$mybb->settings['threadreadcut']*60*60*24;

			}

			$cutoff = 0;
			if($mybb->settings['threadreadcut'] > 0 && $thread['lastpost'] > $forum_read)
			{
				$cutoff = TIME_NOW-$mybb->settings['threadreadcut']*60*60*24;

			if($thread['lastpost'] > $cutoff)
			{
				if($thread['lastread'])
				{
					$lastread = $thread['lastread'];

			if($thread['lastpost'] > $cutoff)
			{
				if($thread['lastread'])
				{
					$lastread = $thread['lastread'];

				{
					$lastread = 1;
				}
			}

			if(!$lastread)

				{
					$lastread = 1;
				}
			}

			if(!$lastread)

				$readcookie = $threadread = my_get_array_cookie("threadread", $thread['tid']);
				if($readcookie > $forum_read)
				{

				$readcookie = $threadread = my_get_array_cookie("threadread", $thread['tid']);
				if($readcookie > $forum_read)
				{

			{
				$folder .= "hot";
				$folder_label .= $lang->icon_hot;

			{
				$folder .= "hot";
				$folder_label .= $lang->icon_hot;

			if($thread['closed'] == 1)
			{

			if($thread['closed'] == 1)
			{

		{
			$posts = '-';
			$threads = '-';

		{
			$posts = '-';
			$threads = '-';

		{
			$posts = my_number_format($forum['posts']);
			$threads = my_number_format($forum['threads']);

		{
			$posts = my_number_format($forum['posts']);
			$threads = my_number_format($forum['threads']);

}

if($mybb->input['action'] == "addsubscription")

}

if($mybb->input['action'] == "addsubscription")

	verify_post_check($mybb->get_input('my_post_key'));

	if($mybb->get_input('type') == "forum")
	{
		$forum = get_forum($mybb->get_input('fid', MyBB::INPUT_INT));
		if(!$forum)

	verify_post_check($mybb->get_input('my_post_key'));

	if($mybb->get_input('type') == "forum")
	{
		$forum = get_forum($mybb->get_input('fid', MyBB::INPUT_INT));
		if(!$forum)

			error($lang->error_invalidforum);
		}
		$forumpermissions = forum_permissions($forum['fid']);
		if($forumpermissions['canview'] == 0 || $forumpermissions['canviewthreads'] == 0)

			error($lang->error_invalidforum);
		}
		$forumpermissions = forum_permissions($forum['fid']);
		if($forumpermissions['canview'] == 0 || $forumpermissions['canviewthreads'] == 0)

		// check if the forum requires a password to view. If so, we need to show a form to the user
		check_forum_password($forum['fid']);

		// check if the forum requires a password to view. If so, we need to show a form to the user
		check_forum_password($forum['fid']);

			$url = "index.php";
		}
		redirect($url, $lang->redirect_forumsubscriptionadded);

			$url = "index.php";
		}
		redirect($url, $lang->redirect_forumsubscriptionadded);

		$referrer = '';
		if($server_http_referer)
		{

		$referrer = '';
		if($server_http_referer)
		{

			$notification_email_checked = "checked=\"checked\"";
		}
		elseif($mybb->user['subscriptionmethod'] == 3)

			$notification_email_checked = "checked=\"checked\"";
		}
		elseif($mybb->user['subscriptionmethod'] == 3)

			$notification_pm_checked = "checked=\"checked\"";
		}

			$notification_pm_checked = "checked=\"checked\"";
		}

	}
}

	}
}

{
	// Verify incoming POST request
	verify_post_check($mybb->get_input('my_post_key'));

{
	// Verify incoming POST request
	verify_post_check($mybb->get_input('my_post_key'));

		$plugins->run_hooks("usercp2_removesubscription_forum");

		remove_subscribed_forum($forum['fid']);

		$plugins->run_hooks("usercp2_removesubscription_forum");

		remove_subscribed_forum($forum['fid']);

			$url = "usercp.php?action=forumsubscriptions";
		}
		redirect($url, $lang->redirect_forumsubscriptionremoved);

			$url = "usercp.php?action=forumsubscriptions";
		}
		redirect($url, $lang->redirect_forumsubscriptionremoved);

	{
		$thread = get_thread($mybb->get_input('tid', MyBB::INPUT_INT));
		if(!$thread)

	{
		$thread = get_thread($mybb->get_input('tid', MyBB::INPUT_INT));
		if(!$thread)

		// Naming of the hook retained for backward compatibility while dropping usercp2.php
		$plugins->run_hooks("usercp2_removesubscription_thread");

		remove_subscribed_thread($thread['tid']);
		if($server_http_referer && $mybb->request_method != 'post')

		// Naming of the hook retained for backward compatibility while dropping usercp2.php
		$plugins->run_hooks("usercp2_removesubscription_thread");

		remove_subscribed_thread($thread['tid']);
		if($server_http_referer && $mybb->request_method != 'post')

			$url = $server_http_referer;

			$url = $server_http_referer;

		else

		else

			$url = "usercp.php?action=subscriptions";

			$url = "usercp.php?action=subscriptions";

		redirect($url, $lang->redirect_subscriptionremoved);

		redirect($url, $lang->redirect_subscriptionremoved);

	}
}

	}
}

{
	// Verify incoming POST request
	verify_post_check($mybb->get_input('my_post_key'));

{
	// Verify incoming POST request
	verify_post_check($mybb->get_input('my_post_key'));

	if($mybb->get_input('type') == "forum")
	{
		// Naming of the hook retained for backward compatibility while dropping usercp2.php
		$plugins->run_hooks("usercp2_removesubscriptions_forum");

		$db->delete_query("forumsubscriptions", "uid='".$mybb->user['uid']."'");

	if($mybb->get_input('type') == "forum")
	{
		// Naming of the hook retained for backward compatibility while dropping usercp2.php
		$plugins->run_hooks("usercp2_removesubscriptions_forum");

		$db->delete_query("forumsubscriptions", "uid='".$mybb->user['uid']."'");

	}
	else
	{

	}
	else
	{

{
	// Verify incoming POST request
	verify_post_check($mybb->get_input('my_post_key'));

{
	// Verify incoming POST request
	verify_post_check($mybb->get_input('my_post_key'));

	// User currently has a suspended signature
	if($mybb->user['suspendsignature'] == 1 && $mybb->user['suspendsigtime'] > TIME_NOW)
	{
		error_no_permission();

	// User currently has a suspended signature
	if($mybb->user['suspendsignature'] == 1 && $mybb->user['suspendsigtime'] > TIME_NOW)
	{
		error_no_permission();

	if($mybb->get_input('updateposts') == "enable")
	{
		$update_signature = array(
			"includesig" => 1

	if($mybb->get_input('updateposts') == "enable")
	{
		$update_signature = array(
			"includesig" => 1

	elseif($mybb->get_input('updateposts') == "disable")
	{
		$update_signature = array(

	elseif($mybb->get_input('updateposts') == "disable")
	{
		$update_signature = array(

{
	$plugins->run_hooks("usercp_editsig_start");
	if(!empty($mybb->input['preview']) && empty($error))

{
	$plugins->run_hooks("usercp_editsig_start");
	if(!empty($mybb->input['preview']) && empty($error))

		$template = "usercp_editsig_preview";
	}
	elseif(empty($error))

		$template = "usercp_editsig_preview";
	}
	elseif(empty($error))

	{
		$sig = $mybb->get_input('signature');
		$template = false;

	{
		$sig = $mybb->get_input('signature');
		$template = false;

	if(!isset($error))
	{
		$error = '';

	if(!isset($error))
	{
		$error = '';

	// User has a current signature, so let's display it (but show an error message)
	if($mybb->user['suspendsignature'] && $mybb->user['suspendsigtime'] > TIME_NOW)

	// User has a current signature, so let's display it (but show an error message)
	if($mybb->user['suspendsignature'] && $mybb->user['suspendsigtime'] > TIME_NOW)

		// User either doesn't have permission, or has their signature suspended
		eval("\$editsig = \"".$templates->get("usercp_editsig_suspended")."\";");
	}

		// User either doesn't have permission, or has their signature suspended
		eval("\$editsig = \"".$templates->get("usercp_editsig_suspended")."\";");
	}

		$sig = htmlspecialchars_uni($sig);
		$lang->edit_sig_note2 = $lang->sprintf($lang->edit_sig_note2, $sigsmilies, $sigmycode, $sigimgcode, $sightml, $mybb->settings['siglength']);

		$sig = htmlspecialchars_uni($sig);
		$lang->edit_sig_note2 = $lang->sprintf($lang->edit_sig_note2, $sigsmilies, $sigmycode, $sigimgcode, $sightml, $mybb->settings['siglength']);

		{
			$codebuttons = build_mycode_inserter("signature");
		}

		{
			$codebuttons = build_mycode_inserter("signature");
		}

					{
						$lang->error_avatartoobig = $lang->sprintf($lang->error_avatartoobig, $maxwidth, $maxheight);
						$avatar_error = $lang->error_avatartoobig;

					{
						$lang->error_avatartoobig = $lang->sprintf($lang->error_avatartoobig, $maxwidth, $maxheight);
						$avatar_error = $lang->error_avatartoobig;

				}

				}

			}

			if(empty($avatar_error))

			}

			if(empty($avatar_error))

	else // remote avatar, but remote avatars are not allowed
	{
		$avatar_error = $lang->error_remote_avatar_not_allowed;

	else // remote avatar, but remote avatars are not allowed
	{
		$avatar_error = $lang->error_remote_avatar_not_allowed;

	if(empty($avatar_error))
	{

	if(empty($avatar_error))
	{

		redirect("usercp.php?action=avatar", $lang->redirect_avatarupdated);
	}
	else

		redirect("usercp.php?action=avatar", $lang->redirect_avatarupdated);
	}
	else

		$mybb->input['action'] = "avatar";
		$avatar_error = inline_error($avatar_error);
	}

		$mybb->input['action'] = "avatar";
		$avatar_error = inline_error($avatar_error);
	}

	if($mybb->user['avatartype'] == "upload" || stristr($mybb->user['avatar'], $mybb->settings['avataruploadpath']))
	{
		$avatarmsg = "<br /><strong>".$lang->already_uploaded_avatar."</strong>";

	if($mybb->user['avatartype'] == "upload" || stristr($mybb->user['avatar'], $mybb->settings['avataruploadpath']))
	{
		$avatarmsg = "<br /><strong>".$lang->already_uploaded_avatar."</strong>";

	elseif($mybb->user['avatartype'] == "remote" || my_validate_url($mybb->user['avatar']))
	{
		$avatarmsg = "<br /><strong>".$lang->using_remote_avatar."</strong>";

	elseif($mybb->user['avatartype'] == "remote" || my_validate_url($mybb->user['avatar']))
	{
		$avatarmsg = "<br /><strong>".$lang->using_remote_avatar."</strong>";

	{
		list($maxwidth, $maxheight) = preg_split('/[|x]/', my_strtolower($mybb->settings['maxavatardims']));
		$lang->avatar_note .= "<br />".$lang->sprintf($lang->avatar_note_dimensions, $maxwidth, $maxheight);

	{
		list($maxwidth, $maxheight) = preg_split('/[|x]/', my_strtolower($mybb->settings['maxavatardims']));
		$lang->avatar_note .= "<br />".$lang->sprintf($lang->avatar_note_dimensions, $maxwidth, $maxheight);

	if($mybb->settings['avatarsize'])
	{
		$maxsize = get_friendly_size($mybb->settings['avatarsize']*1024);
		$lang->avatar_note .= "<br />".$lang->sprintf($lang->avatar_note_size, $maxsize);

	if($mybb->settings['avatarsize'])
	{
		$maxsize = get_friendly_size($mybb->settings['avatarsize']*1024);
		$lang->avatar_note .= "<br />".$lang->sprintf($lang->avatar_note_size, $maxsize);

	$plugins->run_hooks("usercp_avatar_intermediate");

	$auto_resize = '';
	if($mybb->settings['avatarresizing'] == "auto")

	$plugins->run_hooks("usercp_avatar_intermediate");

	$auto_resize = '';
	if($mybb->settings['avatarresizing'] == "auto")

		eval("\$auto_resize = \"".$templates->get("usercp_avatar_auto_resize_auto")."\";");

		eval("\$auto_resize = \"".$templates->get("usercp_avatar_auto_resize_auto")."\";");

	elseif($mybb->settings['avatarresizing'] == "user")
	{
		eval("\$auto_resize = \"".$templates->get("usercp_avatar_auto_resize_user")."\";");

	elseif($mybb->settings['avatarresizing'] == "user")
	{
		eval("\$auto_resize = \"".$templates->get("usercp_avatar_auto_resize_user")."\";");

	$avatarupload = '';
	if($mybb->usergroup['canuploadavatars'] == 1)
	{
		eval("\$avatarupload = \"".$templates->get("usercp_avatar_upload")."\";");

	$avatarupload = '';
	if($mybb->usergroup['canuploadavatars'] == 1)
	{
		eval("\$avatarupload = \"".$templates->get("usercp_avatar_upload")."\";");

	$avatar_remote = '';
	if($mybb->settings['allowremoteavatars'] == 1)
	{
		eval("\$avatar_remote = \"".$templates->get("usercp_avatar_remote")."\";");

	$avatar_remote = '';
	if($mybb->settings['allowremoteavatars'] == 1)
	{
		eval("\$avatar_remote = \"".$templates->get("usercp_avatar_remote")."\";");

	$removeavatar = '';
	if(!empty($mybb->user['avatar']))
	{
		eval("\$removeavatar = \"".$templates->get("usercp_avatar_remove")."\";");

	$removeavatar = '';
	if(!empty($mybb->user['avatar']))
	{
		eval("\$removeavatar = \"".$templates->get("usercp_avatar_remove")."\";");

	$plugins->run_hooks("usercp_avatar_end");

	if(!isset($avatar_error))
	{
		$avatar_error = '';

	$plugins->run_hooks("usercp_avatar_end");

	if(!isset($avatar_error))
	{
		$avatar_error = '';

	eval("\$avatar = \"".$templates->get("usercp_avatar")."\";");
	output_page($avatar);
}

	eval("\$avatar = \"".$templates->get("usercp_avatar")."\";");
	output_page($avatar);
}

if($mybb->input['action'] == "acceptrequest")

if($mybb->input['action'] == "acceptrequest")

	$user = get_user($request['uid']);
	if(!empty($user))

	$user = get_user($request['uid']);
	if(!empty($user))

		else
		{
			$user['buddylist'] = array();

		else
		{
			$user['buddylist'] = array();

		// Now we have the new list, so throw it all back together
		$new_list = implode(",", $user['buddylist']);

		// Now we have the new list, so throw it all back together
		$new_list = implode(",", $user['buddylist']);

		if(my_substr($new_list, 0, 1) == ",")
		{
			$new_list = my_substr($new_list, 1);

		if(my_substr($new_list, 0, 1) == ",")
		{
			$new_list = my_substr($new_list, 1);

		if(my_substr($new_list, 0, 1) == ",")
		{
			$new_list = my_substr($new_list, 1);

		if(my_substr($new_list, 0, 1) == ",")
		{
			$new_list = my_substr($new_list, 1);

		if(my_substr($new_list, -1) == ",")
		{
			$new_list = my_substr($new_list, 0, my_strlen($new_list)-2);
		}

		if(my_substr($new_list, -1) == ",")
		{
			$new_list = my_substr($new_list, 0, my_strlen($new_list)-2);
		}

		$mybb->user['buddylist'] = $db->escape_string($new_list);

		$mybb->user['buddylist'] = $db->escape_string($new_list);

		$db->update_query("users", array('buddylist' => $mybb->user['buddylist']), "uid='".(int)$mybb->user['uid']."'");

		$pm = array(

		$db->update_query("users", array('buddylist' => $mybb->user['buddylist']), "uid='".(int)$mybb->user['uid']."'");

		$pm = array(

		);

		send_pm($pm, $mybb->user['uid'], true);

		);

		send_pm($pm, $mybb->user['uid'], true);

	{
		error($lang->user_doesnt_exist);
	}

	{
		error($lang->user_doesnt_exist);
	}

	if(empty($request))
	{
		error($lang->invalid_request);

	if(empty($request))
	{
		error($lang->invalid_request);

	$plugins->run_hooks("usercp_declinerequest_start");

	$user = get_user($request['uid']);

	$plugins->run_hooks("usercp_declinerequest_start");

	$user = get_user($request['uid']);

	$plugins->run_hooks("usercp_declinerequest_end");

	redirect("usercp.php?action=editlists", $lang->buddyrequest_declined);

	$plugins->run_hooks("usercp_declinerequest_end");

	redirect("usercp.php?action=editlists", $lang->buddyrequest_declined);

elseif($mybb->input['action'] == "cancelrequest")
{
	// Verify incoming POST request

elseif($mybb->input['action'] == "cancelrequest")
{
	// Verify incoming POST request

		if($mybb->user['ignorelist'])
		{
			$existing_users = explode(",", $mybb->user['ignorelist']);

		if($mybb->user['ignorelist'])
		{
			$existing_users = explode(",", $mybb->user['ignorelist']);

		{
			// Create a list of buddies...
			$selected_list = explode(",", $mybb->user['buddylist']);

		{
			// Create a list of buddies...
			$selected_list = explode(",", $mybb->user['buddylist']);

	$error_message = "";
	$message = "";

	$error_message = "";
	$message = "";

	// Adding one or more users to this list
	if($mybb->get_input('add_username'))
	{

	// Adding one or more users to this list
	if($mybb->get_input('add_username'))
	{

		foreach($users as $key => $username)
		{
			if(empty($username))

		foreach($users as $key => $username)
		{
			if(empty($username))

			}

			if(my_strtoupper($mybb->user['username']) == my_strtoupper($username))

			}

			if(my_strtoupper($mybb->user['username']) == my_strtoupper($username))

				$adding_self = true;
				unset($users[$key]);
				continue;

				$adding_self = true;
				unset($users[$key]);
				continue;

			$users[$key] = $db->escape_string($username);
		}

		// Get the requests we have sent that are still pending
		$query = $db->simple_select('buddyrequests', 'touid', 'uid='.(int)$mybb->user['uid']);
		$requests = array();

			$users[$key] = $db->escape_string($username);
		}

		// Get the requests we have sent that are still pending
		$query = $db->simple_select('buddyrequests', 'touid', 'uid='.(int)$mybb->user['uid']);
		$requests = array();

		{
			$requests[$req['touid']] = true;
		}

		{
			$requests[$req['touid']] = true;
		}

				case 'mysql':
				case 'mysqli':
					$field = 'username';

				case 'mysql':
				case 'mysqli':
					$field = 'username';

				default:
					$field = 'LOWER(username)';
					break;
			}
			$query = $db->simple_select("users", "uid,buddyrequestsauto,buddyrequestspm,language", "{$field} IN ('".my_strtolower(implode("','", $users))."')");
			while($user = $db->fetch_array($query))

				default:
					$field = 'LOWER(username)';
					break;
			}
			$query = $db->simple_select("users", "uid,buddyrequestsauto,buddyrequestspm,language", "{$field} IN ('".my_strtolower(implode("','", $users))."')");
			while($user = $db->fetch_array($query))

				++$found_users;

				// Make sure we're not adding a duplicate
				if(in_array($user['uid'], $existing_users) || in_array($user['uid'], $selected_list))
				{
					if($mybb->get_input('manage') == "ignored")

				++$found_users;

				// Make sure we're not adding a duplicate
				if(in_array($user['uid'], $existing_users) || in_array($user['uid'], $selected_list))
				{
					if($mybb->get_input('manage') == "ignored")

						$error_message = "ignore";

						$error_message = "ignore";

					else
					{
						$error_message = "buddy";

					else
					{
						$error_message = "buddy";

					// On another list?
					$string = "users_already_on_".$error_message."_list";
					if(in_array($user['uid'], $selected_list))

					// On another list?
					$string = "users_already_on_".$error_message."_list";
					if(in_array($user['uid'], $selected_list))

				}

				if(isset($requests[$user['uid']]))

				}

				if(isset($requests[$user['uid']]))

						$error_message = $lang->users_already_sent_request;
					}
					elseif($mybb->get_input('manage') == "ignored")
					{
						$error_message = $lang->users_already_sent_request_alt;

						$error_message = $lang->users_already_sent_request;
					}
					elseif($mybb->get_input('manage') == "ignored")
					{
						$error_message = $lang->users_already_sent_request_alt;

					array_pop($users); // To maintain a proper count when we call count($users)
					continue;

					array_pop($users); // To maintain a proper count when we call count($users)
					continue;

				// Do we have auto approval set to On?
				if($user['buddyrequestsauto'] == 1 && $mybb->get_input('manage') != "ignored")

				// Do we have auto approval set to On?
				if($user['buddyrequestsauto'] == 1 && $mybb->get_input('manage') != "ignored")

					$pm = array(
						'subject' => 'buddyrequest_new_buddy',
						'message' => 'buddyrequest_new_buddy_message',

					$pm = array(
						'subject' => 'buddyrequest_new_buddy',
						'message' => 'buddyrequest_new_buddy_message',

					send_pm($pm);
				}

					send_pm($pm);
				}

		}

		if($found_users < count($users))

		}

		if($found_users < count($users))

			if($error_message)
			{
				$error_message .= "<br />";
			}

			$error_message .= $lang->invalid_user_selected;

			if($error_message)
			{
				$error_message .= "<br />";
			}

			$error_message .= $lang->invalid_user_selected;

		if(($adding_self != true || ($adding_self == true && count($users) > 0)) && ($error_message == "" || count($users) > 1))
		{

		if(($adding_self != true || ($adding_self == true && count($users) > 0)) && ($error_message == "" || count($users) > 1))
		{

		}

		if($adding_self == true)

		}

		if($adding_self == true)

			if($mybb->get_input('manage') == "ignored")
			{
				$error_message = $lang->cant_add_self_to_ignore_list;

			if($mybb->get_input('manage') == "ignored")
			{
				$error_message = $lang->cant_add_self_to_ignore_list;

			if($user['lastactive'] > $timecut && ($user['invisible'] == 0 || $mybb->usergroup['canviewwolinvis'] == 1) && $user['lastvisit'] != $user['lastactive'])
			{
				$status = "online";

			if($user['lastactive'] > $timecut && ($user['invisible'] == 0 || $mybb->usergroup['canviewwolinvis'] == 1) && $user['lastvisit'] != $user['lastactive'])
			{
				$status = "online";

				$status = "offline";
			}
			eval("\$ignore_list .= \"".$templates->get("usercp_editlists_user")."\";");

				$status = "offline";
			}
			eval("\$ignore_list .= \"".$templates->get("usercp_editlists_user")."\";");

if($mybb->input['action'] == "drafts")
{
	$plugins->run_hooks("usercp_drafts_start");

if($mybb->input['action'] == "drafts")
{
	$plugins->run_hooks("usercp_drafts_start");

	$query = $db->simple_select("posts", "COUNT(pid) AS draftcount", "visible='-2' AND uid='{$mybb->user['uid']}'");
	$draftcount = $db->fetch_field($query, 'draftcount');

	$query = $db->simple_select("posts", "COUNT(pid) AS draftcount", "visible='-2' AND uid='{$mybb->user['uid']}'");
	$draftcount = $db->fetch_field($query, 'draftcount');

	// Verify incoming POST request
	verify_post_check($mybb->get_input('my_post_key'));

	// Verify incoming POST request
	verify_post_check($mybb->get_input('my_post_key'));

	$mybb->input['deletedraft'] = $mybb->get_input('deletedraft', MyBB::INPUT_ARRAY);
	if(empty($mybb->input['deletedraft']))
	{
		error($lang->no_drafts_selected);
	}

	$mybb->input['deletedraft'] = $mybb->get_input('deletedraft', MyBB::INPUT_ARRAY);
	if(empty($mybb->input['deletedraft']))
	{
		error($lang->no_drafts_selected);
	}

	$pidin = array();
	$tidin = array();

	$pidin = array();
	$tidin = array();

	foreach($mybb->input['deletedraft'] as $id => $val)
	{
		if($val == "post")

	foreach($mybb->input['deletedraft'] as $id => $val)
	{
		if($val == "post")

		elseif($val == "thread")
		{
			$tidin[] = "'".(int)$id."'";

		elseif($val == "thread")
		{
			$tidin[] = "'".(int)$id."'";

	if($tidin)
	{
		$tidin = implode(",", $tidin);
		$db->delete_query("threads", "tid IN ($tidin) AND visible='-2' AND uid='".$mybb->user['uid']."'");
		$tidinp = "OR tid IN ($tidin)";

	if($tidin)
	{
		$tidin = implode(",", $tidin);
		$db->delete_query("threads", "tid IN ($tidin) AND visible='-2' AND uid='".$mybb->user['uid']."'");
		$tidinp = "OR tid IN ($tidin)";

	if($pidin || $tidinp)
	{
		$pidinq = $tidin = '';

	if($pidin || $tidinp)
	{
		$pidinq = $tidin = '';

	$plugins->run_hooks("usercp_do_drafts_end");
	redirect("usercp.php?action=drafts", $lang->selected_drafts_deleted);
}

	$plugins->run_hooks("usercp_do_drafts_end");
	redirect("usercp.php?action=drafts", $lang->selected_drafts_deleted);
}

if($mybb->input['action'] == "usergroups")
{

if($mybb->input['action'] == "usergroups")
{

	$ingroups = ",".$mybb->user['usergroup'].",".$mybb->user['additionalgroups'].",".$mybb->user['displaygroup'].",";

	$ingroups = ",".$mybb->user['usergroup'].",".$mybb->user['additionalgroups'].",".$mybb->user['displaygroup'].",";

	$usergroups = $mybb->cache->read('usergroups');

	$usergroups = $mybb->cache->read('usergroups');

	// Changing our display group
	if($mybb->get_input('displaygroup', MyBB::INPUT_INT))

	// Changing our display group
	if($mybb->get_input('displaygroup', MyBB::INPUT_INT))

	$showmemberof = false;
	if($mybb->user['additionalgroups'])
	{

	$showmemberof = false;
	if($mybb->user['additionalgroups'])
	{

		while($usergroup = $db->fetch_array($query))
		{
			$showmemberof = true;

		while($usergroup = $db->fetch_array($query))
		{
			$showmemberof = true;

	$existinggroups = $mybb->user['usergroup'];
	if($mybb->user['additionalgroups'])
	{

	$existinggroups = $mybb->user['usergroup'];
	if($mybb->user['additionalgroups'])
	{

	}

	}

	$joinablegroups = $joinablegrouplist = '';
	$query = $db->simple_select("usergroups", "*", "(type='3' OR type='4' OR type='5') AND gid NOT IN ($existinggroups)", array('order_by' => 'title'));
	while($usergroup = $db->fetch_array($query))

	$joinablegroups = $joinablegrouplist = '';
	$query = $db->simple_select("usergroups", "*", "(type='3' OR type='4' OR type='5') AND gid NOT IN ($existinggroups)", array('order_by' => 'title'));
	while($usergroup = $db->fetch_array($query))

		$description = '';
		$usergroup['title'] = htmlspecialchars_uni($usergroup['title']);
		if($usergroup['description'])

		$description = '';
		$usergroup['title'] = htmlspecialchars_uni($usergroup['title']);
		if($usergroup['description'])

			$usergroup['description'] = htmlspecialchars_uni($usergroup['description']);
			eval("\$description = \"".$templates->get("usercp_usergroups_joinable_usergroup_description")."\";");

			$usergroup['description'] = htmlspecialchars_uni($usergroup['description']);
			eval("\$description = \"".$templates->get("usercp_usergroups_joinable_usergroup_description")."\";");

		// Moderating join requests?
		if($usergroup['type'] == 4)

		// Moderating join requests?
		if($usergroup['type'] == 4)

			$conditions = $lang->usergroup_joins_moderated;
		}

			$conditions = $lang->usergroup_joins_moderated;
		}

		{
			$conditions = $lang->usergroup_joins_anyone;
		}

		{
			$conditions = $lang->usergroup_joins_anyone;
		}

		{
			$applydate = my_date('relative', $appliedjoin[$usergroup['gid']]);
			$joinlink = $lang->sprintf($lang->join_group_applied, $applydate);

		{
			$applydate = my_date('relative', $appliedjoin[$usergroup['gid']]);
			$joinlink = $lang->sprintf($lang->join_group_applied, $applydate);

		elseif(isset($appliedjoin[$usergroup['gid']]) && $usergroup['type'] == 5)
		{
			$joinlink = $lang->sprintf($lang->pending_invitation, $usergroup['gid'], $mybb->post_code);

		elseif(isset($appliedjoin[$usergroup['gid']]) && $usergroup['type'] == 5)
		{
			$joinlink = $lang->sprintf($lang->pending_invitation, $usergroup['gid'], $mybb->post_code);

		elseif($usergroup['type'] == 5)

		elseif($usergroup['type'] == 5)

			$joinlink = "--";

			$joinlink = "--";

			eval("\$joinlink = \"".$templates->get("usercp_usergroups_joinable_usergroup_join")."\";");
		}

			eval("\$joinlink = \"".$templates->get("usercp_usergroups_joinable_usergroup_join")."\";");
		}

				$comma = $lang->comma;
			}
			$usergroupleaders = $lang->usergroup_leaders." ".$usergroupleaders;

				$comma = $lang->comma;
			}
			$usergroupleaders = $lang->usergroup_leaders." ".$usergroupleaders;

		if(my_strpos($usergroupleaders, $mybb->user['username']) === false)
		{
			// User is already a leader of the group, so don't show as a "Join Group"

		if(my_strpos($usergroupleaders, $mybb->user['username']) === false)
		{
			// User is already a leader of the group, so don't show as a "Join Group"

	eval("\$groupmemberships = \"".$templates->get("usercp_usergroups")."\";");
	output_page($groupmemberships);

	eval("\$groupmemberships = \"".$templates->get("usercp_usergroups")."\";");
	output_page($groupmemberships);

if($mybb->input['action'] == "attachments")
{

if($mybb->input['action'] == "attachments")
{

	require_once MYBB_ROOT."inc/functions_upload.php";

	if($mybb->settings['enableattachments'] == 0)

	require_once MYBB_ROOT."inc/functions_upload.php";

	if($mybb->settings['enableattachments'] == 0)

		error($lang->attachments_disabled);

		error($lang->attachments_disabled);

	// Get unviewable forums
	$f_perm_sql = '';

	// Get unviewable forums
	$f_perm_sql = '';

	}

	$attachments = '';

	}

	$attachments = '';

	// Pagination
	if(!$mybb->settings['threadsperpage'] || (int)$mybb->settings['threadsperpage'] < 1)
	{
		$mybb->settings['threadsperpage'] = 20;

	// Pagination
	if(!$mybb->settings['threadsperpage'] || (int)$mybb->settings['threadsperpage'] < 1)
	{
		$mybb->settings['threadsperpage'] = 20;

	$perpage = $mybb->settings['threadsperpage'];
	$page = $mybb->get_input('page', MyBB::INPUT_INT);

	if($page > 0)
	{
		$start = ($page-1) * $perpage;

	$perpage = $mybb->settings['threadsperpage'];
	$page = $mybb->get_input('page', MyBB::INPUT_INT);

	if($page > 0)
	{
		$start = ($page-1) * $perpage;

	}
	else
	{
		$start = 0;
		$page = 1;
	}

	}
	else
	{
		$start = 0;
		$page = 1;
	}

	$end = $start + $perpage;
	$lower = $start+1;

	$end = $start + $perpage;
	$lower = $start+1;

		ORDER BY p.dateline DESC LIMIT {$start}, {$perpage}
	");

		ORDER BY p.dateline DESC LIMIT {$start}, {$perpage}
	");

	while($attachment = $db->fetch_array($query))
	{
		if($attachment['dateline'] && $attachment['tid'])

	while($attachment = $db->fetch_array($query))
	{
		if($attachment['dateline'] && $attachment['tid'])

			$attachment['subject'] = htmlspecialchars_uni($parser->parse_badwords($attachment['subject']));
			$attachment['postlink'] = get_post_link($attachment['pid'], $attachment['tid']);
			$attachment['threadlink'] = get_thread_link($attachment['tid']);

			$attachment['subject'] = htmlspecialchars_uni($parser->parse_badwords($attachment['subject']));
			$attachment['postlink'] = get_post_link($attachment['pid'], $attachment['tid']);
			$attachment['threadlink'] = get_thread_link($attachment['tid']);

			$size = get_friendly_size($attachment['filesize']);
			$icon = get_attachment_icon(get_extension($attachment['filename']));
			$attachment['filename'] = htmlspecialchars_uni($attachment['filename']);

			$size = get_friendly_size($attachment['filesize']);
			$icon = get_attachment_icon(get_extension($attachment['filename']));
			$attachment['filename'] = htmlspecialchars_uni($attachment['filename']);

			$sizedownloads = $lang->sprintf($lang->attachment_size_downloads, $size, $attachment['downloads']);
			$attachdate = my_date('relative', $attachment['dateline']);
			$altbg = alt_trow();

			eval("\$attachments .= \"".$templates->get("usercp_attachments_attachment")."\";");

			$sizedownloads = $lang->sprintf($lang->attachment_size_downloads, $size, $attachment['downloads']);
			$attachdate = my_date('relative', $attachment['dateline']);
			$altbg = alt_trow();

			eval("\$attachments .= \"".$templates->get("usercp_attachments_attachment")."\";");

			// Add to bandwidth total
			$bandwidth += ($attachment['filesize'] * $attachment['downloads']);
			$totaldownloads += $attachment['downloads'];

			// Add to bandwidth total
			$bandwidth += ($attachment['filesize'] * $attachment['downloads']);
			$totaldownloads += $attachment['downloads'];

		}
		else
		{
			// This little thing delets attachments without a thread/post
			remove_attachment($attachment['pid'], $attachment['posthash'], $attachment['aid']);
		}

		}
		else
		{
			// This little thing delets attachments without a thread/post
			remove_attachment($attachment['pid'], $attachment['posthash'], $attachment['aid']);
		}

	}

	}

	$friendlyusage = get_friendly_size((int)$totalusage);
	if($mybb->usergroup['attachquota'])
	{

	$friendlyusage = get_friendly_size((int)$totalusage);
	if($mybb->usergroup['attachquota'])
	{

		$usagenote = $lang->sprintf($lang->attachments_usage, $friendlyusage, $totalattachments);
	}

		$usagenote = $lang->sprintf($lang->attachments_usage, $friendlyusage, $totalattachments);
	}

	$bandwidth = get_friendly_size($bandwidth);

	if(!$attachments)

	$bandwidth = get_friendly_size($bandwidth);

	if(!$attachments)

	// Verify incoming POST request
	verify_post_check($mybb->get_input('my_post_key'));

	// Verify incoming POST request
	verify_post_check($mybb->get_input('my_post_key'));

	require_once MYBB_ROOT."inc/functions_upload.php";
	if(!isset($mybb->input['attachments']) || !is_array($mybb->input['attachments']))
	{
		error($lang->no_attachments_selected);
	}

	require_once MYBB_ROOT."inc/functions_upload.php";
	if(!isset($mybb->input['attachments']) || !is_array($mybb->input['attachments']))
	{
		error($lang->no_attachments_selected);
	}

	// Get unviewable forums
	$f_perm_sql = '';

	// Get unviewable forums
	$f_perm_sql = '';