Vergleich polls.php - 1.8.6 - 1.8.30

Keine Änderungen Hinzugefügt Modifiziert Entfernt
Zeile 24	Zeile 24
if($mybb->user['uid'] != 0) {	if($mybb->user['uid'] != 0) {
	$mybb->user['username'] = htmlspecialchars_uni($mybb->user['username']);
eval("\$loginbox = \"".$templates->get("changeuserbox")."\";"); } else {	eval("\$loginbox = \"".$templates->get("changeuserbox")."\";"); } else {
	$username = '';
eval("\$loginbox = \"".$templates->get("loginbox")."\";"); }	eval("\$loginbox = \"".$templates->get("loginbox")."\";"); }
Zeile 51	Zeile 53
$plugins->run_hooks("polls_newpoll_start"); $thread = get_thread($mybb->get_input('tid', MyBB::INPUT_INT));	$plugins->run_hooks("polls_newpoll_start"); $thread = get_thread($mybb->get_input('tid', MyBB::INPUT_INT));
if(!$thread) {	if(!$thread \|\| $thread['visible'] == -1) {
error($lang->error_invalidthread);	error($lang->error_invalidthread);
}	}
// Is the currently logged in user a moderator of this forum?	// Is the currently logged in user a moderator of this forum?
if(is_moderator($thread['fid'])) { $ismod = true; } else { $ismod = false; }	$ismod = is_moderator($thread['fid']);
// Make sure we are looking at a real thread here. if(($thread['visible'] != 1 && $ismod == false) \|\| ($thread['visible'] > 1 && $ismod == true))	// Make sure we are looking at a real thread here. if(($thread['visible'] != 1 && $ismod == false) \|\| ($thread['visible'] > 1 && $ismod == true))
Zeile 104	Zeile 99
if($thread['poll']) { error($lang->error_pollalready);	if($thread['poll']) { error($lang->error_pollalready);
}	}
$time = TIME_NOW; if($thread['dateline'] < ($time-($mybb->settings['polltimelimit']6060)) && $mybb->settings['polltimelimit'] != 0 && $ismod == false) {	$time = TIME_NOW; if($thread['dateline'] < ($time-($mybb->settings['polltimelimit']6060)) && $mybb->settings['polltimelimit'] != 0 && $ismod == false) {
Zeile 136	Zeile 131
$postoptionschecked = array('public' => '', 'multiple' => ''); $postoptions = $mybb->get_input('postoptions', MyBB::INPUT_INT); if(isset($postoptions['multiple']) && $postoptions['multiple'] == 1)	$postoptionschecked = array('public' => '', 'multiple' => ''); $postoptions = $mybb->get_input('postoptions', MyBB::INPUT_INT); if(isset($postoptions['multiple']) && $postoptions['multiple'] == 1)
{	{
$postoptionschecked['multiple'] = 'checked="checked"'; } if(isset($postoptions['public']) && $postoptions['public'] == 1)	$postoptionschecked['multiple'] = 'checked="checked"'; } if(isset($postoptions['public']) && $postoptions['public'] == 1)
Zeile 165	Zeile 160
else { $timeout = 0;	else { $timeout = 0;
}	}
if($mybb->get_input('maxoptions', MyBB::INPUT_INT) > 0 && $mybb->get_input('maxoptions', MyBB::INPUT_INT) < $polloptions)	if($mybb->get_input('maxoptions', MyBB::INPUT_INT) > 0 && $mybb->get_input('maxoptions', MyBB::INPUT_INT) < $polloptions)
{	{
$maxoptions = $mybb->get_input('maxoptions', MyBB::INPUT_INT);	$maxoptions = $mybb->get_input('maxoptions', MyBB::INPUT_INT);
}	}
else { $maxoptions = 0;	else { $maxoptions = 0;
Zeile 182	Zeile 177
output_page($newpoll); } if($mybb->input['action'] == "do_newpoll" && $mybb->request_method == "post")	output_page($newpoll); } if($mybb->input['action'] == "do_newpoll" && $mybb->request_method == "post")
{ // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));	{ // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));
$plugins->run_hooks("polls_do_newpoll_start"); $thread = get_thread($mybb->get_input('tid', MyBB::INPUT_INT)); if(!$thread)	$plugins->run_hooks("polls_do_newpoll_start"); $thread = get_thread($mybb->get_input('tid', MyBB::INPUT_INT)); if(!$thread)
{	{
error($lang->error_invalidthread); }	error($lang->error_invalidthread); }
Zeile 202	Zeile 197
if(!$forum) { error($lang->error_invalidforum);	if(!$forum) { error($lang->error_invalidforum);
}	}
else { // Is our forum closed?	else { // Is our forum closed?
Zeile 211	Zeile 206
// Doesn't look like it is error($lang->error_closedinvalidforum); }	// Doesn't look like it is error($lang->error_closedinvalidforum); }
}	}
// No permission if: Not thread author; not moderator; no forum perms to view, post threads, post polls if(($thread['uid'] != $mybb->user['uid'] && !is_moderator($fid, "canmanagepolls")) \|\| ($forumpermissions['canview'] == 0 \|\| $forumpermissions['canpostthreads'] == 0 \|\| $forumpermissions['canpostpolls'] == 0)) { error_no_permission();	// No permission if: Not thread author; not moderator; no forum perms to view, post threads, post polls if(($thread['uid'] != $mybb->user['uid'] && !is_moderator($fid, "canmanagepolls")) \|\| ($forumpermissions['canview'] == 0 \|\| $forumpermissions['canpostthreads'] == 0 \|\| $forumpermissions['canpostpolls'] == 0)) { error_no_permission();
}	}
if($thread['poll']) { error($lang->error_pollalready);	if($thread['poll']) { error($lang->error_pollalready);
}	}
$polloptions = $mybb->get_input('polloptions', MyBB::INPUT_INT); if($mybb->settings['maxpolloptions'] && $polloptions > $mybb->settings['maxpolloptions']) {	$polloptions = $mybb->get_input('polloptions', MyBB::INPUT_INT); if($mybb->settings['maxpolloptions'] && $polloptions > $mybb->settings['maxpolloptions']) {
Zeile 234	Zeile 229
if(!isset($postoptions['multiple']) \|\| $postoptions['multiple'] != '1') { $postoptions['multiple'] = 0;	if(!isset($postoptions['multiple']) \|\| $postoptions['multiple'] != '1') { $postoptions['multiple'] = 0;
}	}
if(!isset($postoptions['public']) \|\| $postoptions['public'] != '1')	if(!isset($postoptions['public']) \|\| $postoptions['public'] != '1')
{	{
$postoptions['public'] = 0;	$postoptions['public'] = 0;
}	}
if($polloptions < 2) {	if($polloptions < 2) {
Zeile 251	Zeile 246
for($i = 1; $i <= $polloptions; ++$i) { if(!isset($options[$i]))	for($i = 1; $i <= $polloptions; ++$i) { if(!isset($options[$i]))
{	{
$options[$i] = '';	$options[$i] = '';
}	}
if($mybb->settings['polloptionlimit'] != 0 && my_strlen($options[$i]) > $mybb->settings['polloptionlimit'])	if($mybb->settings['polloptionlimit'] != 0 && my_strlen($options[$i]) > $mybb->settings['polloptionlimit'])
{	{
$lengtherror = 1;	$lengtherror = 1;
break;	break;
} if(strpos($options[$i], '\|\|~\|~\|\|') !== false)	} if(strpos($options[$i], '\|\|~\|~\|\|') !== false)
Zeile 268	Zeile 263
} if(trim($options[$i]) != "")	} if(trim($options[$i]) != "")
{	{
$optioncount++; }	$optioncount++; }
}	}
if(isset($lengtherror))	if(isset($lengtherror))
{	{
error($lang->error_polloptiontoolong);	error($lang->error_polloptiontoolong);
}	}
if(isset($sequenceerror)) { error($lang->error_polloptionsequence); } $mybb->input['question'] = $mybb->get_input('question');	if(isset($sequenceerror)) { error($lang->error_polloptionsequence); } $mybb->input['question'] = $mybb->get_input('question');

if(trim($mybb->input['question']) == '' \|\| $optioncount < 2) { error($lang->error_noquestionoptions);	if(trim($mybb->input['question']) == '' \|\| $optioncount < 2) { error($lang->error_noquestionoptions);
Zeile 316	Zeile 311
} if($mybb->get_input('maxoptions', MyBB::INPUT_INT) > 0 && $mybb->get_input('maxoptions', MyBB::INPUT_INT) < $polloptions)	} if($mybb->get_input('maxoptions', MyBB::INPUT_INT) > 0 && $mybb->get_input('maxoptions', MyBB::INPUT_INT) < $polloptions)
{ $maxoptions = $mybb->get_input('maxoptions', MyBB::INPUT_INT); }	{ $maxoptions = $mybb->get_input('maxoptions', MyBB::INPUT_INT); }
else { $maxoptions = 0; }	else { $maxoptions = 0; }

$newpoll = array( "tid" => $thread['tid'], "question" => $db->escape_string($mybb->input['question']),	$newpoll = array( "tid" => $thread['tid'], "question" => $db->escape_string($mybb->input['question']),
Zeile 348	Zeile 343
$plugins->run_hooks("polls_do_newpoll_end"); if($thread['visible'] == 1)	$plugins->run_hooks("polls_do_newpoll_end"); if($thread['visible'] == 1)
{	{
redirect(get_thread_link($thread['tid']), $lang->redirect_pollposted); } else	redirect(get_thread_link($thread['tid']), $lang->redirect_pollposted); } else
Zeile 380	Zeile 375
$tid = $thread['tid']; $fid = $thread['fid'];	$tid = $thread['tid']; $fid = $thread['fid'];

// Make navigation build_forum_breadcrumb($fid); add_breadcrumb(htmlspecialchars_uni($thread['subject']), get_thread_link($thread['tid']));	// Make navigation build_forum_breadcrumb($fid); add_breadcrumb(htmlspecialchars_uni($thread['subject']), get_thread_link($thread['tid']));
Zeile 446	Zeile 441
$counter = $i + 1; $option = $optionsarray[$i]; $option = htmlspecialchars_uni($option);	$counter = $i + 1; $option = $optionsarray[$i]; $option = htmlspecialchars_uni($option);
$optionvotes = (int)$votesarray[$i]; if(!$optionvotes) {	$optionvotes = (int)$votesarray[$i]; if(!$optionvotes) {
$optionvotes = 0; }	$optionvotes = 0; }

eval("\$optionbits .= \"".$templates->get("polls_editpoll_option")."\";"); $option = ""; $optionvotes = "";	eval("\$optionbits .= \"".$templates->get("polls_editpoll_option")."\";"); $option = ""; $optionvotes = "";
}	}
if(!$poll['timeout']) {	if(!$poll['timeout']) {
$timeout = 0;	$timeout = 0; } else { $timeout = $poll['timeout'];
}	}
else { $timeout = $poll['timeout']; }
if(!$poll['maxoptions']) { $maxoptions = 0;	if(!$poll['maxoptions']) { $maxoptions = 0;
Zeile 477	Zeile 472
} } else	} } else
{ if($mybb->settings['maxpolloptions'] && $mybb->get_input('numoptions', MyBB::INPUT_INT) > $mybb->settings['maxpolloptions'])	{ if($mybb->settings['maxpolloptions'] && $mybb->get_input('numoptions', MyBB::INPUT_INT) > $mybb->settings['maxpolloptions'])
{ $numoptions = $mybb->settings['maxpolloptions']; }	{ $numoptions = $mybb->settings['maxpolloptions']; }
Zeile 542	Zeile 537
{ $timeout = 0; }	{ $timeout = 0; }

if(!$poll['maxoptions'])	if(!$poll['maxoptions'])
{	{
$maxoptions = 0; } else	$maxoptions = 0; } else
Zeile 577	Zeile 572
$query = $db->simple_select("threads", "*", "poll='".$mybb->get_input('pid', MyBB::INPUT_INT)."'"); $thread = $db->fetch_array($query); if(!$thread)	$query = $db->simple_select("threads", "*", "poll='".$mybb->get_input('pid', MyBB::INPUT_INT)."'"); $thread = $db->fetch_array($query); if(!$thread)
{ error($lang->error_invalidthread); } $forumpermissions = forum_permissions($thread['fid']);	{ error($lang->error_invalidthread); } $forumpermissions = forum_permissions($thread['fid']);
// Get forum info $forum = get_forum($thread['fid']);	// Get forum info $forum = get_forum($thread['fid']);
Zeile 597	Zeile 592
{ // Doesn't look like it is error($lang->error_closedinvalidforum);	{ // Doesn't look like it is error($lang->error_closedinvalidforum);
} }	} }
if(!is_moderator($thread['fid'], "canmanagepolls")) {	if(!is_moderator($thread['fid'], "canmanagepolls")) {
Zeile 606	Zeile 601
} if($mybb->settings['maxpolloptions'] && $mybb->get_input('numoptions', MyBB::INPUT_INT) > $mybb->settings['maxpolloptions'])	} if($mybb->settings['maxpolloptions'] && $mybb->get_input('numoptions', MyBB::INPUT_INT) > $mybb->settings['maxpolloptions'])
{	{
$numoptions = $mybb->settings['maxpolloptions'];	$numoptions = $mybb->settings['maxpolloptions'];
}	}
elseif($mybb->get_input('numoptions', MyBB::INPUT_INT) < 2)	elseif($mybb->get_input('numoptions', MyBB::INPUT_INT) < 2)
{	{
$numoptions = 2;	$numoptions = 2;
} else {	} else {
$numoptions = $mybb->get_input('numoptions', MyBB::INPUT_INT); }	$numoptions = $mybb->get_input('numoptions', MyBB::INPUT_INT); }
Zeile 646	Zeile 641
if($mybb->settings['polloptionlimit'] != 0 && my_strlen($options[$i]) > $mybb->settings['polloptionlimit']) { $lengtherror = 1;	if($mybb->settings['polloptionlimit'] != 0 && my_strlen($options[$i]) > $mybb->settings['polloptionlimit']) { $lengtherror = 1;
break; }	break; }
if(strpos($options[$i], '\|\|~\|~\|\|') !== false)	if(strpos($options[$i], '\|\|~\|~\|\|') !== false)
{	{
$sequenceerror = 1; break; }	$sequenceerror = 1; break; }
Zeile 664	Zeile 659
if(isset($lengtherror)) { error($lang->error_polloptiontoolong);	if(isset($lengtherror)) { error($lang->error_polloptiontoolong);
}	}
if(isset($sequenceerror)) {	if(isset($sequenceerror)) {
Zeile 696	Zeile 691
{ $votes[$i] = "0"; }	{ $votes[$i] = "0"; }
$voteslist .= $votes[$i]; $numvotes = $numvotes + $votes[$i];	$voteslist .= (int)$votes[$i]; $numvotes = (int)$numvotes + (int)$votes[$i];
}	}
}	}
if($mybb->get_input('timeout', MyBB::INPUT_INT) > 0)	if($mybb->get_input('timeout', MyBB::INPUT_INT) > 0)
{	{
$timeout = $mybb->get_input('timeout', MyBB::INPUT_INT);	$timeout = $mybb->get_input('timeout', MyBB::INPUT_INT);
} else	} else
{ $timeout = 0;	{ $timeout = 0;
}	}
if($mybb->get_input('maxoptions', MyBB::INPUT_INT) > 0 && $mybb->get_input('maxoptions', MyBB::INPUT_INT) < $numoptions) { $maxoptions = $mybb->get_input('maxoptions', MyBB::INPUT_INT);	if($mybb->get_input('maxoptions', MyBB::INPUT_INT) > 0 && $mybb->get_input('maxoptions', MyBB::INPUT_INT) < $numoptions) { $maxoptions = $mybb->get_input('maxoptions', MyBB::INPUT_INT);
} else {	} else {
$maxoptions = 0; }	$maxoptions = 0; }
Zeile 749	Zeile 744
{ $query = $db->simple_select("polls", "*", "pid='".$mybb->get_input('pid', MyBB::INPUT_INT)."'"); $poll = $db->fetch_array($query);	{ $query = $db->simple_select("polls", "*", "pid='".$mybb->get_input('pid', MyBB::INPUT_INT)."'"); $poll = $db->fetch_array($query);

if(!$poll)	if(!$poll)
{	{
error($lang->error_invalidpoll);	error($lang->error_invalidpoll);
}	}
$tid = $poll['tid']; $thread = get_thread($tid);	$tid = $poll['tid']; $thread = get_thread($tid);
if(!$thread)	if(!$thread \|\| ($thread['visible'] != 1 && ($thread['visible'] == 0 && !is_moderator($thread['fid'], "canviewunapprove")) \|\| ($thread['visible'] == -1 && !is_moderator($thread['fid'], "canviewdeleted"))))
{ error($lang->error_invalidthread);	{ error($lang->error_invalidthread);
} $fid = $thread['fid'];	} $fid = $thread['fid'];
// Get forum info $forum = get_forum($fid); if(!$forum) { error($lang->error_invalidforum);	// Get forum info $forum = get_forum($fid); if(!$forum) { error($lang->error_invalidforum);
} $forumpermissions = forum_permissions($forum['fid']);	} $forumpermissions = forum_permissions($forum['fid']);
$plugins->run_hooks("polls_showresults_start"); if($forumpermissions['canviewthreads'] == 0 \|\| $forumpermissions['canview'] == 0 \|\| (isset($forumpermissions['canonlyviewownthreads']) && $forumpermissions['canonlyviewownthreads'] != 0 && $thread['uid'] != $mybb->user['uid']))	$plugins->run_hooks("polls_showresults_start"); if($forumpermissions['canviewthreads'] == 0 \|\| $forumpermissions['canview'] == 0 \|\| (isset($forumpermissions['canonlyviewownthreads']) && $forumpermissions['canonlyviewownthreads'] != 0 && $thread['uid'] != $mybb->user['uid']))
Zeile 785	Zeile 780
add_breadcrumb(htmlspecialchars_uni($thread['subject']), get_thread_link($thread['tid'])); add_breadcrumb($lang->nav_pollresults);	add_breadcrumb(htmlspecialchars_uni($thread['subject']), get_thread_link($thread['tid'])); add_breadcrumb($lang->nav_pollresults);
$voters = $votedfor = array();	$voters = $votedfor = $guest_voters = array();
// Calculate votes $query = $db->query("	// Calculate votes $query = $db->query("
Zeile 807	Zeile 802
if($voter['uid'] == 0 \|\| $voter['username'] == '') { // Add one to the number of voters for guests	if($voter['uid'] == 0 \|\| $voter['username'] == '') { // Add one to the number of voters for guests
++$guest_voters[$voter['voteoption']];	if(isset($guest_voters[$voter['voteoption']])) { ++$guest_voters[$voter['voteoption']]; } else { $guest_voters[$voter['voteoption']] = 1; }
} else {	} else {
$voters[$voter['voteoption']][$voter['uid']] = $voter['username'];	$voters[$voter['voteoption']][$voter['uid']] = htmlspecialchars_uni($voter['username']);
} }	} }
Zeile 905	Zeile 907
eval("\$showresults = \"".$templates->get("polls_showresults")."\";"); output_page($showresults); }	eval("\$showresults = \"".$templates->get("polls_showresults")."\";"); output_page($showresults); }

if($mybb->input['action'] == "vote" && $mybb->request_method == "post") { // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));	if($mybb->input['action'] == "vote" && $mybb->request_method == "post") { // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));

$query = $db->simple_select("polls", "*", "pid='".$mybb->get_input('pid')."'"); $poll = $db->fetch_array($query);	$query = $db->simple_select("polls", "*", "pid='".$mybb->get_input('pid')."'"); $poll = $db->fetch_array($query);

if(!$poll) { error($lang->error_invalidpoll); }	if(!$poll) { error($lang->error_invalidpoll); }

$plugins->run_hooks("polls_vote_start");	$plugins->run_hooks("polls_vote_start");

$poll['timeout'] = $poll['timeout']6060*24;	$poll['timeout'] = $poll['timeout']6060*24;
$query = $db->simple_select("threads", "*", "poll='".(int)$poll['pid']."'"); $thread = $db->fetch_array($query); if(!$thread \|\| $thread['visible'] == 0)	$thread = get_thread($poll['tid']); if(!$thread \|\| ($thread['visible'] != 1 && ($thread['visible'] == 0 && !is_moderator($thread['fid'], "canviewunapprove")) \|\| ($thread['visible'] == -1 && !is_moderator($thread['fid'], "canviewdeleted"))))
{ error($lang->error_invalidthread); }	{ error($lang->error_invalidthread); }
Zeile 950	Zeile 952
{ // Doesn't look like it is error($lang->error_closedinvalidforum);	{ // Doesn't look like it is error($lang->error_closedinvalidforum);
} }	} }
$expiretime = $poll['dateline'] + $poll['timeout']; $now = TIME_NOW; if($poll['closed'] == 1 \|\| $thread['closed'] == 1 \|\| ($expiretime < $now && $poll['timeout'])) { error($lang->error_pollclosed);	$expiretime = $poll['dateline'] + $poll['timeout']; $now = TIME_NOW; if($poll['closed'] == 1 \|\| $thread['closed'] == 1 \|\| ($expiretime < $now && $poll['timeout'])) { error($lang->error_pollclosed);
}	}
if(!isset($mybb->input['option']))	if(!isset($mybb->input['option']))
{	{
error($lang->error_nopolloptions);	error($lang->error_nopolloptions);
}	}
// Check if the user has voted before... if($mybb->user['uid'])	// Check if the user has voted before... if($mybb->user['uid'])
{ $query = $db->simple_select("pollvotes", "*", "uid='".$mybb->user['uid']."' AND pid='".$poll['pid']."'"); $votecheck = $db->fetch_array($query); } if($votecheck['vid'] \|\| (isset($mybb->cookies['pollvotes'][$poll['pid']]) && $mybb->cookies['pollvotes'][$poll['pid']] !== ""))	{ $user_check = "uid='{$mybb->user['uid']}'"; } else { $user_check = "ipaddress=".$db->escape_binary($session->packedip); } $query = $db->simple_select("pollvotes", "*", "{$user_check} AND pid='".$poll['pid']."'"); $votecheck = $db->fetch_array($query); if($votecheck['vid'])
{ error($lang->error_alreadyvoted);	{ error($lang->error_alreadyvoted);
} elseif(!$mybb->user['uid']) { // Give a cookie to guests to inhibit revotes if(is_array($mybb->input['option'])) { // We have multiple options here... $votes_cookie = implode(',', array_keys($mybb->input['option'])); } else { $votes_cookie = $mybb->input['option']; } my_setcookie("pollvotes[{$poll['pid']}]", $votes_cookie);
}	}
$votesql = ''; $now = TIME_NOW;	$votesql = array();
$votesarray = explode("\|\|~\|~\|\|", $poll['votes']); $option = $mybb->input['option']; $numvotes = (int)$poll['numvotes'];	$votesarray = explode("\|\|~\|~\|\|", $poll['votes']); $option = $mybb->input['option']; $numvotes = (int)$poll['numvotes'];
Zeile 1002	Zeile 994
if(is_array($option)) { $total_options = 0;	if(is_array($option)) { $total_options = 0;

foreach($option as $voteoption => $vote) { if($vote == 1 && isset($votesarray[$voteoption-1])) {	foreach($option as $voteoption => $vote) { if($vote == 1 && isset($votesarray[$voteoption-1])) {
if($votesql) { $votesql .= ","; } $votesql .= "('".$poll['pid']."','".$mybb->user['uid']."','".$db->escape_string($voteoption)."','$now')";	$votesql[] = array( "pid" => $poll['pid'], "uid" => (int)$mybb->user['uid'], "voteoption" => $db->escape_string($voteoption), "dateline" => TIME_NOW, "ipaddress" => $db->escape_binary($session->packedip) );
$votesarray[$voteoption-1]++; $numvotes = $numvotes+1; $total_options++; }	$votesarray[$voteoption-1]++; $numvotes = $numvotes+1; $total_options++; }
}	}
if($total_options > $poll['maxoptions'] && $poll['maxoptions'] != 0) { error($lang->sprintf($lang->error_maxpolloptions, $poll['maxoptions'])); }	if($total_options > $poll['maxoptions'] && $poll['maxoptions'] != 0) { error($lang->sprintf($lang->error_maxpolloptions, $poll['maxoptions'])); }
} }	} }
else	else
{	{
if(is_array($option) \|\| !isset($votesarray[$option-1])) { error($lang->error_nopolloptions); }	if(is_array($option) \|\| !isset($votesarray[$option-1])) { error($lang->error_nopolloptions); }
$votesql = "('".$poll['pid']."','".$mybb->user['uid']."','".$db->escape_string($option)."','$now')";	$votesql = array( "pid" => $poll['pid'], "uid" => (int)$mybb->user['uid'], "voteoption" => $db->escape_string($option), "dateline" => TIME_NOW, "ipaddress" => $db->escape_binary($session->packedip) );
$votesarray[$option-1]++; $numvotes = $numvotes+1; }	$votesarray[$option-1]++; $numvotes = $numvotes+1; }
Zeile 1038	Zeile 1041
if(!$votesql) { error($lang->error_nopolloptions);	if(!$votesql) { error($lang->error_nopolloptions);
} $db->write_query(" INSERT INTO ".TABLE_PREFIX."pollvotes (pid,uid,voteoption,dateline) VALUES $votesql ");	} if($poll['multiple'] == 1) { $db->insert_query_multiple("pollvotes", $votesql); } else { $db->insert_query("pollvotes", $votesql); }
$voteslist = ''; for($i = 1; $i <= $poll['numoptions']; ++$i) {	$voteslist = ''; for($i = 1; $i <= $poll['numoptions']; ++$i) {
Zeile 1075	Zeile 1082
if($mybb->usergroup['canundovotes'] != 1) { error_no_permission();	if($mybb->usergroup['canundovotes'] != 1) { error_no_permission();
}	}
$query = $db->simple_select("polls", "*", "pid='".$mybb->get_input('pid', MyBB::INPUT_INT)."'"); $poll = $db->fetch_array($query);	$query = $db->simple_select("polls", "*", "pid='".$mybb->get_input('pid', MyBB::INPUT_INT)."'"); $poll = $db->fetch_array($query);
Zeile 1092	Zeile 1099
// We do not have $forum_cache available here since no forums permissions are checked in undo vote // Get thread ID and then get forum info $thread = get_thread($poll['tid']);	// We do not have $forum_cache available here since no forums permissions are checked in undo vote // Get thread ID and then get forum info $thread = get_thread($poll['tid']);
if(!$thread \|\| $thread['visible'] == 0)	if(!$thread \|\| ($thread['visible'] != 1 && ($thread['visible'] == 0 && !is_moderator($thread['fid'], "canviewunapprove")) \|\| ($thread['visible'] == -1 && !is_moderator($thread['fid'], "canviewdeleted"))))
{ error($lang->error_invalidthread); }	{ error($lang->error_invalidthread); }
Zeile 1122	Zeile 1129
if($poll['closed'] == 1 \|\| $thread['closed'] == 1 \|\| ($expiretime < TIME_NOW && $poll['timeout'])) { error($lang->error_pollclosed);	if($poll['closed'] == 1 \|\| $thread['closed'] == 1 \|\| ($expiretime < TIME_NOW && $poll['timeout'])) { error($lang->error_pollclosed);
}	}
// Check if the user has voted before... $vote_options = array();	// Check if the user has voted before... $vote_options = array();

if($mybb->user['uid'])	if($mybb->user['uid'])
{ $query = $db->simple_select("pollvotes", "vid,voteoption", "uid='".$mybb->user['uid']."' AND pid='".$poll['pid']."'"); while($voteoption = $db->fetch_array($query)) { $vote_options[$voteoption['vid']] = $voteoption['voteoption']; } } elseif(isset($mybb->cookies['pollvotes'][$poll['pid']])) { // for Guests, we simply see if they've got the cookie $vote_options = explode(',', $mybb->cookies['pollvotes'][$poll['pid']]);	{ $user_check = "uid='{$mybb->user['uid']}'"; } else { $user_check = "uid='0' AND ipaddress=".$db->escape_binary($session->packedip); } $query = $db->simple_select("pollvotes", "vid,voteoption", "{$user_check} AND pid='".$poll['pid']."'"); while($voteoption = $db->fetch_array($query)) { $vote_options[$voteoption['vid']] = $voteoption['voteoption'];
} if(empty($vote_options)) { error($lang->error_notvoted);	} if(empty($vote_options)) { error($lang->error_notvoted);
} else if(!$mybb->user['uid']) { // clear cookie for Guests my_setcookie("pollvotes[{$poll['pid']}]", "");
} // Note, this is not thread safe! $votesarray = explode("\|\|~\|~\|\|", $poll['votes']); if(count($votesarray) > $poll['numoptions']) {	} // Note, this is not thread safe! $votesarray = explode("\|\|~\|~\|\|", $poll['votes']); if(count($votesarray) > $poll['numoptions']) {
$votesarray = array_slice(0, $poll['numoptions']);	$votesarray = array_slice($votesarray, 0, $poll['numoptions']);
} if($poll['multiple'] == 1)	} if($poll['multiple'] == 1)
Zeile 1200	Zeile 1204
$plugins->run_hooks("polls_do_undovote_process");	$plugins->run_hooks("polls_do_undovote_process");
$db->delete_query("pollvotes", "uid='".$mybb->user['uid']."' AND pid='".$poll['pid']."'");	$db->delete_query("pollvotes", "{$user_check} AND pid='".$poll['pid']."'");
$db->update_query("polls", $updatedpoll, "pid='".$poll['pid']."'"); $plugins->run_hooks("polls_do_undovote_end");	$db->update_query("polls", $updatedpoll, "pid='".$poll['pid']."'"); $plugins->run_hooks("polls_do_undovote_end");