Vergleich inc/class_parser.php - 1.8.19 - 1.8.34

  Keine Änderungen   Hinzugefügt   Modifiziert   Entfernt
Zeile 13Zeile 13
	allow_html
allow_smilies
allow_mycode

	allow_html
allow_smilies
allow_mycode

 
	allow_auto_url

	nl2br
filter_badwords
me_username

	nl2br
filter_badwords
me_username

Zeile 95Zeile 96
	 * @var boolean
*/
public $clear_needed = false;

	 * @var boolean
*/
public $clear_needed = false;

 

/**
* Don't validate parser output
*/
const VALIDATION_DISABLE = 0;

/**
* Validate parser output and log errors
*/
const VALIDATION_REPORT_ONLY = 1;

/**
* Validate parser output, log errors, and block output on failure
*/
const VALIDATION_REQUIRE = 2;

/**
* Whether to validate the parser's HTML output when `allow_html` is disabled.
* Validation errors will be logged/sent/displayed according to board settings.
*
* @access public
* @var self::VALIDATION_*
*/
public $output_validation_policy = self::VALIDATION_REQUIRE;


/**
* Parses a message with the specified options.
*
* @param string $message The message to be parsed.


/**
* Parses a message with the specified options.
*
* @param string $message The message to be parsed.

	 * @param array $options Array of yes/no options - allow_html,filter_badwords,allow_mycode,allow_smilies,nl2br,me_username,filter_cdata.

	 * @param array $options Array of yes/no options

	 * @return string The parsed message.
*/
function parse_message($message, $options=array())
{
global $plugins, $mybb;


	 * @return string The parsed message.
*/
function parse_message($message, $options=array())
{
global $plugins, $mybb;


		$this->clear_needed = false;



		$original_message = $message;

$this->clear_needed = false;


// Set base URL for parsing smilies
$this->base_url = $mybb->settings['bburl'];


// Set base URL for parsing smilies
$this->base_url = $mybb->settings['bburl'];





		if($this->base_url != "")
{
if(my_substr($this->base_url, my_strlen($this->base_url) -1) != "/")

		if($this->base_url != "")
{
if(my_substr($this->base_url, my_strlen($this->base_url) -1) != "/")

Zeile 124Zeile 151
		$this->options = $options;

$message = $plugins->run_hooks("parse_message_start", $message);

		$this->options = $options;

$message = $plugins->run_hooks("parse_message_start", $message);





		// Get rid of carriage returns for they are the workings of the devil
$message = str_replace("\r", "", $message);


		// Get rid of carriage returns for they are the workings of the devil
$message = str_replace("\r", "", $message);


Zeile 151Zeile 178
			foreach($code_matches as $point => $part)
{
if(isset($part[3]))

			foreach($code_matches as $point => $part)
{
if(isset($part[3]))

				{

				{

					$part[1] = "[".$part[1]."]";
$code_matches[$point][2] = substr_replace($part[0], "", strrpos($part[0], $part[3]), strlen($part[3]));
$code_matches[$point][2] = substr_replace($code_matches[$point][2], "", strpos($code_matches[$point][2], $part[1]), strlen($part[1]));

					$part[1] = "[".$part[1]."]";
$code_matches[$point][2] = substr_replace($part[0], "", strrpos($part[0], $part[3]), strlen($part[3]));
$code_matches[$point][2] = substr_replace($code_matches[$point][2], "", strpos($code_matches[$point][2], $part[1]), strlen($part[1]));

Zeile 205Zeile 232
		if($mybb->settings['allowlinkmycode'] != 1)
{
$message = preg_replace("#\[(\/)?url{1}(.*?)\]#i", "", $message);

		if($mybb->settings['allowlinkmycode'] != 1)
{
$message = preg_replace("#\[(\/)?url{1}(.*?)\]#i", "", $message);

		}

		}


// Parse Highlights
if(!empty($this->options['highlight']))


// Parse Highlights
if(!empty($this->options['highlight']))

Zeile 254Zeile 281

$message = $plugins->run_hooks("parse_message_end", $message);



$message = $plugins->run_hooks("parse_message_end", $message);


		return $message;








		if ($this->output_allowed($original_message, $message) === true)
{
return $message;
}
else
{
return '';
}

	}

/**
* Converts HTML in a message to their specific entities whilst allowing unicode characters.

	}

/**
* Converts HTML in a message to their specific entities whilst allowing unicode characters.

	 *

	 *

	 * @param string $message The message to be parsed.
* @return string The formatted message.
*/

	 * @param string $message The message to be parsed.
* @return string The formatted message.
*/

Zeile 270Zeile 304
		$message = str_replace(">",">",$message);
return $message;
}

		$message = str_replace(">",">",$message);
return $message;
}





	/**
* Generates a cache of MyCode, both standard and custom.
*

	/**
* Generates a cache of MyCode, both standard and custom.
*

Zeile 281Zeile 315
		global $cache, $lang, $mybb;
$this->mycode_cache = array();


		global $cache, $lang, $mybb;
$this->mycode_cache = array();


		$standard_mycode = $callback_mycode = $nestable_mycode = array();
$standard_count = $callback_count = $nestable_count = 0;


		$standard_mycode = $callback_mycode = $nestable_mycode = $nestable_callback_mycode = array();
$standard_count = $callback_count = $nestable_count = $nestable_callback_count = 0;


		if($mybb->settings['allowbasicmycode'] == 1)
{
$standard_mycode['b']['regex'] = "#\[b\](.*?)\[/b\]#si";
$standard_mycode['b']['replacement'] = "<span style=\"font-weight: bold;\" class=\"mycode_b\">$1</span>";

		if($mybb->settings['allowbasicmycode'] == 1)
{
$standard_mycode['b']['regex'] = "#\[b\](.*?)\[/b\]#si";
$standard_mycode['b']['replacement'] = "<span style=\"font-weight: bold;\" class=\"mycode_b\">$1</span>";





			$standard_mycode['u']['regex'] = "#\[u\](.*?)\[/u\]#si";
$standard_mycode['u']['replacement'] = "<span style=\"text-decoration: underline;\" class=\"mycode_u\">$1</span>";


			$standard_mycode['u']['regex'] = "#\[u\](.*?)\[/u\]#si";
$standard_mycode['u']['replacement'] = "<span style=\"text-decoration: underline;\" class=\"mycode_u\">$1</span>";


Zeile 308Zeile 342
		{
$standard_mycode['copy']['regex'] = "#\(c\)#i";
$standard_mycode['copy']['replacement'] = "&copy;";

		{
$standard_mycode['copy']['regex'] = "#\(c\)#i";
$standard_mycode['copy']['replacement'] = "&copy;";





			$standard_mycode['tm']['regex'] = "#\(tm\)#i";
$standard_mycode['tm']['replacement'] = "&#153;";

$standard_mycode['reg']['regex'] = "#\(r\)#i";
$standard_mycode['reg']['replacement'] = "&reg;";

			$standard_mycode['tm']['regex'] = "#\(tm\)#i";
$standard_mycode['tm']['replacement'] = "&#153;";

$standard_mycode['reg']['regex'] = "#\(r\)#i";
$standard_mycode['reg']['replacement'] = "&reg;";





			++$standard_count;
}


			++$standard_count;
}


Zeile 364Zeile 398

++$nestable_count;
++$callback_count;


++$nestable_count;
++$callback_count;

		}

if($mybb->settings['allowfontmycode'] == 1)
{
$nestable_mycode['font']['regex'] = "#\[font=([a-z0-9 ,\-_'\"]+)\](.*?)\[/font\]#si";
$nestable_mycode['font']['replacement'] = "<span style=\"font-family: $1;\" class=\"mycode_font\">$2</span>";

++$nestable_count;

 
		}

if($mybb->settings['allowalignmycode'] == 1)

		}

if($mybb->settings['allowalignmycode'] == 1)

Zeile 380Zeile 406
			$nestable_mycode['align']['replacement'] = "<div style=\"text-align: $1;\" class=\"mycode_align\">$2</div>";

++$nestable_count;

			$nestable_mycode['align']['replacement'] = "<div style=\"text-align: $1;\" class=\"mycode_align\">$2</div>";

++$nestable_count;

 
		}

if($mybb->settings['allowfontmycode'] == 1)
{
$nestable_callback_mycode['font']['regex'] = "#\[font=\\s*(\"?)([a-z0-9 ,\-_'\"]+)\\1\\s*\](.*?)\[/font\]#si";
$nestable_callback_mycode['font']['replacement'] = array($this, 'mycode_parse_font_callback');

++$nestable_callback_count;

		}

$custom_mycode = $cache->read("mycode");

		}

$custom_mycode = $cache->read("mycode");

Zeile 395Zeile 429
				++$standard_count;
}
$mycode = array_merge($standard_mycode, $custom_mycode);

				++$standard_count;
}
$mycode = array_merge($standard_mycode, $custom_mycode);

		}
else
{

		}
else
{

			$mycode = $standard_mycode;
}


			$mycode = $standard_mycode;
}


Zeile 412Zeile 446
		foreach($nestable_mycode as $code)
{
$this->mycode_cache['nestable'][] = array('find' => $code['regex'], 'replacement' => $code['replacement']);

		foreach($nestable_mycode as $code)
{
$this->mycode_cache['nestable'][] = array('find' => $code['regex'], 'replacement' => $code['replacement']);

		}

// Assign the nestable MyCode to the cache.

		}

// Assign the callback MyCode to the cache.

		foreach($callback_mycode as $code)

		foreach($callback_mycode as $code)

		{

		{

			$this->mycode_cache['callback'][] = array('find' => $code['regex'], 'replacement' => $code['replacement']);

			$this->mycode_cache['callback'][] = array('find' => $code['regex'], 'replacement' => $code['replacement']);

 
		}

// Assign the nestable callback MyCode to the cache.
foreach($nestable_callback_mycode as $code)
{
$this->mycode_cache['nestable_callback'][] = array('find' => $code['regex'], 'replacement' => $code['replacement']);

		}

$this->mycode_cache['standard_count'] = $standard_count;
$this->mycode_cache['callback_count'] = $callback_count;
$this->mycode_cache['nestable_count'] = $nestable_count;

		}

$this->mycode_cache['standard_count'] = $standard_count;
$this->mycode_cache['callback_count'] = $callback_count;
$this->mycode_cache['nestable_count'] = $nestable_count;

	}



		$this->mycode_cache['nestable_callback_count'] = $nestable_callback_count;
}


	/**
* Parses MyCode tags in a specific message with the specified options.
*

	/**
* Parses MyCode tags in a specific message with the specified options.
*

Zeile 500Zeile 541
				while(preg_match($mycode['find'], $message))
{
$message = preg_replace($mycode['find'], $mycode['replacement'], $message);

				while(preg_match($mycode['find'], $message))
{
$message = preg_replace($mycode['find'], $mycode['replacement'], $message);

 
				}
}
}

// Replace the nestable callback mycodes
if($this->mycode_cache['nestable_callback_count'] > 0)
{
foreach($this->mycode_cache['nestable_callback'] as $replace)
{
while(preg_match($replace['find'], $message))
{
$message_org = $message;
$message = preg_replace_callback($replace['find'], $replace['replacement'], $message);
if ($message_org == $message)
{
break;
}

				}
}
}

				}
}
}

Zeile 521Zeile 579
			}
}


			}
}


		$message = $this->mycode_auto_url($message);







		if(
(!isset($this->options['allow_auto_url']) || $this->options['allow_auto_url'] == 1) &&
$mybb->settings['allowautourl'] == 1
)
{
$message = $this->mycode_auto_url($message);
}


return $message;
}


return $message;
}

Zeile 532Zeile 596
	 * @access private
*/
function cache_smilies()

	 * @access private
*/
function cache_smilies()

	{

	{

		global $cache, $mybb, $theme, $templates;
$this->smilies_cache = array();

		global $cache, $mybb, $theme, $templates;
$this->smilies_cache = array();





		$smilies = $cache->read("smilies");
if(is_array($smilies))
{
$extra_class = $onclick = '';
foreach($smilies as $sid => $smilie)
{

		$smilies = $cache->read("smilies");
if(is_array($smilies))
{
$extra_class = $onclick = '';
foreach($smilies as $sid => $smilie)
{

 
				if(isset($theme['imgdir']))
{
$imgdir = $theme['imgdir'];
}
else
{
$imgdir = '';
}


				$smilie['find'] = explode("\n", $smilie['find']);

				$smilie['find'] = explode("\n", $smilie['find']);

				$smilie['image'] = str_replace("{theme}", $theme['imgdir'], $smilie['image']);

				$smilie['image'] = str_replace("{theme}", $imgdir, $smilie['image']);

				$smilie['image'] = htmlspecialchars_uni($mybb->get_asset_url($smilie['image']));
$smilie['name'] = htmlspecialchars_uni($smilie['name']);


				$smilie['image'] = htmlspecialchars_uni($mybb->get_asset_url($smilie['image']));
$smilie['name'] = htmlspecialchars_uni($smilie['name']);


Zeile 668Zeile 741

/**
* Generates REGEX patterns based on user defined badword string.


/**
* Generates REGEX patterns based on user defined badword string.

	 *

	 *

	 * @param string $badword The word defined to replace.
* @return string The regex pattern to match the word or null on error.
*/

	 * @param string $badword The word defined to replace.
* @return string The regex pattern to match the word or null on error.
*/

Zeile 679Zeile 752
			return;
}


			return;
}


		// Neutralize multiple adjacent wildcards and generate pattern
$ptrn = array('/\*\++/', '/\++\*/', '/\*+/');
$rplc = array('*', '*', '[^\s\n]*');

		// Neutralize escape character, regex operators, multiple adjacent wildcards and generate pattern
$ptrn = array('/\\\\/', '/([\[\^\$\.\|\?\(\)\{\}]{1})/', '/\*\++/', '/\++\*/', '/\*+/');
$rplc = array('\\\\\\\\','\\\\${1}', '*', '*', '[^\s\n]*');

		$bad_word = preg_replace($ptrn, $rplc, $bad_word);

// Count + and generate pattern

		$bad_word = preg_replace($ptrn, $rplc, $bad_word);

// Count + and generate pattern

Zeile 750Zeile 823
	* @return string The parsed text.
*/
function mycode_handle_size($size, $text)

	* @return string The parsed text.
*/
function mycode_handle_size($size, $text)

	{
global $templates;

	{
global $templates;


$size = (int)$size;

if($size < 1)
{
$size = 1;


$size = (int)$size;

if($size < 1)
{
$size = 1;

		}

		}


if($size > 50)
{


if($size > 50)
{

Zeile 778Zeile 851
	* @return string The parsed text.
*/
function mycode_handle_size_callback($matches)

	* @return string The parsed text.
*/
function mycode_handle_size_callback($matches)

	{

	{

		return $this->mycode_handle_size($matches[1], $matches[2]);
}


		return $this->mycode_handle_size($matches[1], $matches[2]);
}


Zeile 792Zeile 865
	function mycode_parse_quotes($message, $text_only=false)
{
global $lang, $templates, $theme, $mybb;

	function mycode_parse_quotes($message, $text_only=false)
{
global $lang, $templates, $theme, $mybb;





		// Assign pattern and replace values.
$pattern = "#\[quote\](.*?)\[\/quote\](\r\n?|\n?)#si";
$pattern_callback = "#\[quote=([\"']|&quot;|)(.*?)(?:\\1)(.*?)(?:[\"']|&quot;)?\](.*?)\[/quote\](\r\n?|\n?)#si";

		// Assign pattern and replace values.
$pattern = "#\[quote\](.*?)\[\/quote\](\r\n?|\n?)#si";
$pattern_callback = "#\[quote=([\"']|&quot;|)(.*?)(?:\\1)(.*?)(?:[\"']|&quot;)?\](.*?)\[/quote\](\r\n?|\n?)#si";

Zeile 805Zeile 878
		else
{
$replace = empty($this->options['signature_parse']) ? "\n{$lang->quote}\n--\n$1\n--\n" : "$1";

		else
{
$replace = empty($this->options['signature_parse']) ? "\n{$lang->quote}\n--\n$1\n--\n" : "$1";

			$replace_callback = array($this, 'mycode_parse_post_quotes_callback2');

			$replace_callback = array($this, 'mycode_parse_post_quotes_callback2');

		}

do

		}

do

Zeile 863Zeile 936
		$delete_quote = true;

preg_match("#pid=(?:&quot;|\"|')?([0-9]+)[\"']?(?:&quot;|\"|')?#i", $username, $match);

		$delete_quote = true;

preg_match("#pid=(?:&quot;|\"|')?([0-9]+)[\"']?(?:&quot;|\"|')?#i", $username, $match);

		if((int)$match[1])

		if(isset($match[1]) && (int)$match[1])

		{
$pid = (int)$match[1];
$url = $mybb->settings['bburl']."/".get_post_link($pid)."#pid$pid";

		{
$pid = (int)$match[1];
$url = $mybb->settings['bburl']."/".get_post_link($pid)."#pid$pid";

Zeile 882Zeile 955

unset($match);
preg_match("#dateline=(?:&quot;|\"|')?([0-9]+)(?:&quot;|\"|')?#i", $username, $match);


unset($match);
preg_match("#dateline=(?:&quot;|\"|')?([0-9]+)(?:&quot;|\"|')?#i", $username, $match);

		if((int)$match[1])

		if(isset($match[1]) && (int)$match[1])

		{
if($match[1] < TIME_NOW)
{

		{
if($match[1] < TIME_NOW)
{

Zeile 902Zeile 975

if($delete_quote)
{


if($delete_quote)
{

			$username = my_substr($username, 0, my_strlen($username)-1);

			$username = my_substr($username, 0, my_strlen($username)-1, true);

		}

if(!empty($this->options['allow_html']))

		}

if(!empty($this->options['allow_html']))

Zeile 942Zeile 1015
	* Parses quotes with post id and/or dateline.
*
* @param array $matches Matches.

	* Parses quotes with post id and/or dateline.
*
* @param array $matches Matches.

	* @return string The parsed message.
*/

	* @return string The parsed message.
*/

	function mycode_parse_post_quotes_callback2($matches)
{
return $this->mycode_parse_post_quotes($matches[4],$matches[2].$matches[3], true);

	function mycode_parse_post_quotes_callback2($matches)
{
return $this->mycode_parse_post_quotes($matches[4],$matches[2].$matches[3], true);

Zeile 969Zeile 1042
		$code = preg_replace('#^(\t*)(\n|\r|\0|\x0B| )*#', '\\1', $code);
$code = rtrim($code);
$original = preg_replace('#^\t*#', '', $code);

		$code = preg_replace('#^(\t*)(\n|\r|\0|\x0B| )*#', '\\1', $code);
$code = rtrim($code);
$original = preg_replace('#^\t*#', '', $code);





		if(empty($original))
{
return;

		if(empty($original))
{
return;

Zeile 983Zeile 1056

eval("\$mycode_code = \"".$templates->get("mycode_code", 1, 0)."\";");
return $mycode_code;


eval("\$mycode_code = \"".$templates->get("mycode_code", 1, 0)."\";");
return $mycode_code;

	}


	}


	/**
* Parses code MyCode.
*

	/**
* Parses code MyCode.
*

Zeile 994Zeile 1067
	function mycode_parse_code_callback($matches)
{
return $this->mycode_parse_code($matches[1], true);

	function mycode_parse_code_callback($matches)
{
return $this->mycode_parse_code($matches[1], true);

	}

/**

	}

/**

	* Parses PHP code MyCode.
*
* @param string $str The message to be parsed

	* Parses PHP code MyCode.
*
* @param string $str The message to be parsed

Zeile 1007Zeile 1080
	function mycode_parse_php($str, $bare_return = false, $text_only = false)
{
global $lang, $templates;

	function mycode_parse_php($str, $bare_return = false, $text_only = false)
{
global $lang, $templates;





		if($text_only == true)
{
return empty($this->options['signature_parse']) ? "\n{$lang->php_code}\n--\n{$str}\n--\n" : $str;

		if($text_only == true)
{
return empty($this->options['signature_parse']) ? "\n{$lang->php_code}\n--\n{$str}\n--\n" : $str;

Zeile 1022Zeile 1095
		if(empty($original))
{
return;

		if(empty($original))
{
return;

		}


		}


		// See if open and close tags are provided.
$added_open_tag = false;
if(!preg_match("#^\s*<\?#si", $str))

		// See if open and close tags are provided.
$added_open_tag = false;
if(!preg_match("#^\s*<\?#si", $str))

		{

		{

			$added_open_tag = true;
$str = "<?php \n".$str;

			$added_open_tag = true;
$str = "<?php \n".$str;

		}

		}


$added_end_tag = false;
if(!preg_match("#\?>\s*$#si", $str))


$added_end_tag = false;
if(!preg_match("#\?>\s*$#si", $str))

Zeile 1040Zeile 1113
		}

$code = @highlight_string($str, true);

		}

$code = @highlight_string($str, true);





		// Do the actual replacing.
$code = preg_replace('#<code>\s*<span style="color: \#000000">\s*#i', "<code>", $code);
$code = preg_replace("#</span>\s*</code>#", "</code>", $code);

		// Do the actual replacing.
$code = preg_replace('#<code>\s*<span style="color: \#000000">\s*#i', "<code>", $code);
$code = preg_replace("#</span>\s*</code>#", "</code>", $code);

Zeile 1050Zeile 1123
		$code = preg_replace("#&amp;\#([0-9]+);#si", "&#$1;", $code);

if($added_open_tag)

		$code = preg_replace("#&amp;\#([0-9]+);#si", "&#$1;", $code);

if($added_open_tag)

		{

		{

			$code = preg_replace("#<code><span style=\"color: \#([A-Z0-9]{6})\">&lt;\?php( |&nbsp;)(<br />?)#", "<code><span style=\"color: #$1\">", $code);
}


			$code = preg_replace("#<code><span style=\"color: \#([A-Z0-9]{6})\">&lt;\?php( |&nbsp;)(<br />?)#", "<code><span style=\"color: #$1\">", $code);
}


Zeile 1133Zeile 1206

// Fix some entities in URLs
$url = $this->encode_url($url);


// Fix some entities in URLs
$url = $this->encode_url($url);



$name = preg_replace("#&amp;\#([0-9]+);#si", "&#$1;", $name); // Fix & but allow unicode

		$name = $this->parse_badwords(preg_replace("#&amp;\#([0-9]+);#si", "&#$1;", $name)); // Fix & but allow unicode, filter bad words




eval("\$mycode_url = \"".$templates->get("mycode_url", 1, 0)."\";");
return $mycode_url;


eval("\$mycode_url = \"".$templates->get("mycode_url", 1, 0)."\";");
return $mycode_url;

 
	}

/**
* Parses font MyCode.
*
* @param array $matches Matches.
* @return string The HTML <span> tag with styled font.
*/
function mycode_parse_font_callback($matches)
{
// Replace any occurrence(s) of double quotes in fonts with single quotes.
// A back-fix for double-quote-containing MyBB font tags in existing
// posts prior to the client-side aspect of this fix for the
// browser-independent SCEditor bug of issue #4182.
$fonts = str_replace('"', "'", $matches[2]);

return "<span style=\"font-family: {$fonts};\" class=\"mycode_font\">{$matches[3]}</span>";

	}

/**

	}

/**

Zeile 1182Zeile 1270
	function mycode_parse_img($url, $dimensions=array(), $align='')
{
global $lang, $templates;

	function mycode_parse_img($url, $dimensions=array(), $align='')
{
global $lang, $templates;

		$url = trim($url);
$url = str_replace("\n", "", $url);
$url = str_replace("\r", "", $url);


		$url = trim($url);
$url = str_replace("\n", "", $url);
$url = str_replace("\r", "", $url);


		if(!empty($this->options['allow_html']))
{
$url = $this->parse_html($url);

		if(!empty($this->options['allow_html']))
{
$url = $this->parse_html($url);

Zeile 1213Zeile 1301
			$alt = my_substr($alt, 0, 40).'...'.my_substr($alt, -10);
}
$alt = $this->encode_url($alt);

			$alt = my_substr($alt, 0, 40).'...'.my_substr($alt, -10);
}
$alt = $this->encode_url($alt);

 
		$alt = preg_replace("#&(?!\#[0-9]+;)#si", "&amp;", $alt); // fix & but allow unicode


$alt = $lang->sprintf($lang->posted_image, $alt);
$width = $height = '';


$alt = $lang->sprintf($lang->posted_image, $alt);
$width = $height = '';

Zeile 1259Zeile 1348
	function mycode_parse_img_callback3($matches)
{
return $this->mycode_parse_img($matches[3], array(), $matches[1]);

	function mycode_parse_img_callback3($matches)
{
return $this->mycode_parse_img($matches[3], array(), $matches[1]);

	}

/**

	}

/**

	 * Parses IMG MyCode.
*
* @param array $matches Matches.

	 * Parses IMG MyCode.
*
* @param array $matches Matches.

Zeile 1310Zeile 1399
	function mycode_parse_img_disabled_callback2($matches)
{
return $this->mycode_parse_img_disabled($matches[4]);

	function mycode_parse_img_disabled_callback2($matches)
{
return $this->mycode_parse_img_disabled($matches[4]);

	}

/**
* Parses IMG MyCode disabled.
*
* @param array $matches Matches.
* @return string Image code.
*/

	}

/**
* Parses IMG MyCode disabled.
*
* @param array $matches Matches.
* @return string Image code.
*/

	function mycode_parse_img_disabled_callback3($matches)
{
return $this->mycode_parse_img_disabled($matches[3]);

	function mycode_parse_img_disabled_callback3($matches)
{
return $this->mycode_parse_img_disabled($matches[3]);

Zeile 1339Zeile 1428
	*
* @param string $email The email address to link to.
* @param string $name The name for the link.

	*
* @param string $email The email address to link to.
* @param string $name The name for the link.

	* @return string The built-up email link.
*/

	* @return string The built-up email link.
*/

	function mycode_parse_email($email, $name="")
{
global $templates;

	function mycode_parse_email($email, $name="")
{
global $templates;





		if(!$name)
{
$name = $email;
}

		if(!$name)
{
$name = $email;
}

		if(preg_match("/^([a-zA-Z0-9-_\+\.]+?)@[a-zA-Z0-9-]+\.[a-zA-Z0-9\.-]+$/si", $email))
{
$email = $email;
}
elseif(preg_match("/^([a-zA-Z0-9-_\+\.]+?)@[a-zA-Z0-9-]+\.[a-zA-Z0-9\.-]+\?(.*?)$/si", $email))
{
$email = htmlspecialchars_uni($email);
}


$email = $this->encode_url($email);








eval("\$mycode_email = \"".$templates->get("mycode_email", 1, 0)."\";");
return $mycode_email;


eval("\$mycode_email = \"".$templates->get("mycode_email", 1, 0)."\";");
return $mycode_email;

Zeile 1373Zeile 1456
		if(!isset($matches[2]))
{
$matches[2] = '';

		if(!isset($matches[2]))
{
$matches[2] = '';

		}

		}

		return $this->mycode_parse_email($matches[1], $matches[2]);
}


		return $this->mycode_parse_email($matches[1], $matches[2]);
}


Zeile 1386Zeile 1469
	*/
function mycode_parse_video($video, $url)
{

	*/
function mycode_parse_video($video, $url)
{

		global $templates;


		global $mybb, $templates;


		if(empty($video) || empty($url))

		if(empty($video) || empty($url))

		{
return "[video={$video}]{$url}[/video]";
}

		{
return "[video={$video}]{$url}[/video]";
}


// Check URL is a valid URL first, as `parse_url` doesn't check validity.
if(false === filter_var($url, FILTER_VALIDATE_URL))


// Check URL is a valid URL first, as `parse_url` doesn't check validity.
if(false === filter_var($url, FILTER_VALIDATE_URL))

		{
return "[video={$video}]{$url}[/video]";
}


		{
return "[video={$video}]{$url}[/video]";
}


		$parsed_url = @parse_url(urldecode($url));
if($parsed_url === false)

		$parsed_url = @parse_url(urldecode($url));
if($parsed_url === false)

		{
return "[video={$video}]{$url}[/video]";
}

$fragments = array();
if($parsed_url['fragment'])
{
$fragments = explode("&", $parsed_url['fragment']);
}

		{
return "[video={$video}]{$url}[/video]";
}

$bbdomain = parse_url($mybb->settings['bburl'], PHP_URL_HOST);

$fragments = empty($parsed_url['fragment']) ? array() : explode("&", $parsed_url['fragment']);







		if($video == "liveleak")

		if($video == "liveleak" && !empty($parsed_url['query']))

		{
// The query part can start with any alphabet, but set only 'i' to catch in index key later
$parsed_url['query'] = "i".substr($parsed_url['query'], 1);

		{
// The query part can start with any alphabet, but set only 'i' to catch in index key later
$parsed_url['query'] = "i".substr($parsed_url['query'], 1);

		}

$queries = explode("&", $parsed_url['query']);


		}

$queries = empty($parsed_url['query']) ? array() : explode("&", $parsed_url['query']);


		$input = array();
foreach($queries as $query)

		$input = array();
foreach($queries as $query)

		{
list($key, $value) = explode("=", $query);
$key = str_replace("amp;", "", $key);
$input[$key] = $value;





		{
$query_array = explode("=", $query);
if(count($query_array) == 2)
{
list($key, $value) = $query_array;
$key = str_replace("amp;", "", $key);
$input[$key] = $value;
}

		}


		}


		$path = explode('/', $parsed_url['path']);


		$path = empty($parsed_url['path']) ? array() : explode('/', $parsed_url['path']);


		switch($video)
{
case "dailymotion":

		switch($video)
{
case "dailymotion":

				if(isset($path[2]))

				if(!empty($path[2]))

				{
list($id) = explode('_', $path[2], 2); // http://www.dailymotion.com/video/fds123_title-goes-here

				{
list($id) = explode('_', $path[2], 2); // http://www.dailymotion.com/video/fds123_title-goes-here

				}
else

				}
elseif(!empty($path[1]))

				{
$id = $path[1]; // http://dai.ly/fds123
}
break;
case "metacafe":

				{
$id = $path[1]; // http://dai.ly/fds123
}
break;
case "metacafe":

				$id = $path[2]; // http://www.metacafe.com/watch/fds123/title_goes_here/
$title = htmlspecialchars_uni($path[3]);



				if(!empty($path[2]))
{
$id = $path[2]; // http://www.metacafe.com/watch/fds123/title_goes_here/
}

				break;
case "myspacetv":

				break;
case "myspacetv":

				$id = $path[4]; // http://www.myspace.com/video/fds/fds/123




				if(!empty($path[4]))
{
$id = $path[4]; // http://www.myspace.com/video/fds/fds/123
}

				break;
case "facebook":

				break;
case "facebook":

				if(isset($input['v']))

				if(!empty($input['v']))

				{
$id = $input['v']; // http://www.facebook.com/video/video.php?v=123
}

				{
$id = $input['v']; // http://www.facebook.com/video/video.php?v=123
}

				elseif(substr($path[3], 0, 3) == 'vb.')

				elseif(!empty($path[3]) && substr($path[3], 0, 3) == 'vb.' && !empty($path[4]))

				{
$id = $path[4]; // https://www.facebook.com/fds/videos/vb.123/123/
}

				{
$id = $path[4]; // https://www.facebook.com/fds/videos/vb.123/123/
}

				else

				elseif(!empty($path[3]))

				{
$id = $path[3]; // https://www.facebook.com/fds/videos/123/
}
break;
case "mixer":

				{
$id = $path[3]; // https://www.facebook.com/fds/videos/123/
}
break;
case "mixer":

				$id = $path[1]; // https://mixer.com/streamer




				if(!empty($path[1]))
{
$id = $path[1]; // https://mixer.com/streamer
}

				break;
case "liveleak":

				break;
case "liveleak":

				$id = $input['i']; // http://www.liveleak.com/view?i=123




				if(!empty($input['i']))
{
$id = $input['i']; // http://www.liveleak.com/view?i=123
}

				break;
case "yahoo":

				break;
case "yahoo":

				if(isset($path[2]))

				if(!empty($path[2]))

				{
$id = $path[2]; // http://xy.screen.yahoo.com/fds/fds-123.html

				{
$id = $path[2]; // http://xy.screen.yahoo.com/fds/fds-123.html

				}
else

				}
elseif(!empty($path[1]))

				{
$id = $path[1]; // http://xy.screen.yahoo.com/fds-123.html
}
// Support for localized portals

				{
$id = $path[1]; // http://xy.screen.yahoo.com/fds-123.html
}
// Support for localized portals

				$domain = explode('.', $parsed_url['host']);
if($domain[0] != 'screen' && preg_match('#^([a-z-]+)$#', $domain[0]))
{
$local = "{$domain[0]}.";
}
else
{
$local = '';




				if(!empty($parsed_url['host']))
{
$domain = explode('.', $parsed_url['host']);
if($domain[0] != 'screen' && preg_match('#^([a-z-]+)$#', $domain[0]))
{
$local = "{$domain[0]}.";
}
else
{
$local = '';
}

				}
break;
case "vimeo":

				}
break;
case "vimeo":

				if(isset($path[3]))

				if(!empty($path[3]))

				{
$id = $path[3]; // http://vimeo.com/fds/fds/fds123

				{
$id = $path[3]; // http://vimeo.com/fds/fds/fds123

				}
else
{

				}
elseif(!empty($path[1]))
{

					$id = $path[1]; // http://vimeo.com/fds123
}
break;
case "youtube":

					$id = $path[1]; // http://vimeo.com/fds123
}
break;
case "youtube":

				if($fragments[0])

				if(!empty($fragments[0]))

				{
$id = str_replace('!v=', '', $fragments[0]); // http://www.youtube.com/watch#!v=fds123
}

				{
$id = str_replace('!v=', '', $fragments[0]); // http://www.youtube.com/watch#!v=fds123
}

				elseif($input['v'])

				elseif(!empty($input['v']))

				{
$id = $input['v']; // http://www.youtube.com/watch?v=fds123
}

				{
$id = $input['v']; // http://www.youtube.com/watch?v=fds123
}

				else

				elseif(!empty($path[1]))

				{
$id = $path[1]; // http://www.youtu.be/fds123
}

				{
$id = $path[1]; // http://www.youtu.be/fds123
}

Zeile 1538Zeile 1637
			return "[video={$video}]{$url}[/video]";
}


			return "[video={$video}]{$url}[/video]";
}


		$id = htmlspecialchars_uni($id);

		$id = $this->encode_url($id);


eval("\$video_code = \"".$templates->get("video_{$video}_embed", 1, 0)."\";");
return $video_code;


eval("\$video_code = \"".$templates->get("video_{$video}_embed", 1, 0)."\";");
return $video_code;

Zeile 1592Zeile 1691
	*/
function mycode_auto_url($message)
{

	*/
function mycode_auto_url($message)
{

		$message = " ".$message;


 
		// Links should end with slashes, numbers, characters and braces but not with dots, commas or question marks
// Don't create links within existing links (handled up-front in the callback function).

		// Links should end with slashes, numbers, characters and braces but not with dots, commas or question marks
// Don't create links within existing links (handled up-front in the callback function).

		$message = preg_replace_callback("#<a\\s[^>]*>.*?</a>|([\s\(\)\[\>])(http|https|ftp|news|irc|ircs|irc6){1}://([^\/\"\s\<\[\.]+\.([^\/\"\s\<\[\.]+\.)*[\w]+(:[0-9]+)?(/([^\"\s<\[]|\[\])*)?([\w\/\)]))#ius", array($this, 'mycode_auto_url_callback'), $message);
$message = preg_replace_callback("#<a\\s[^>]*>.*?</a>|([\s\(\)\[\>])(www|ftp)\.(([^\/\"\s\<\[\.]+\.)*[\w]+(:[0-9]+)?(/([^\"\s<\[]|\[\])*)?([\w\/\)]))#ius", array($this, 'mycode_auto_url_callback'), $message);
$message = my_substr($message, 1);

















		$message = preg_replace_callback(
"~
<a\\s[^>]*>.*?</a>| # match and return existing links
(?<=^|[\s\(\)\[\>]) # character preceding the link
(?P<prefix>
(?:http|https|ftp|news|irc|ircs|irc6)://| # scheme, or
(?:www|ftp)\. # common subdomain
)
(?P<link>
(?:[^\/\"\s\<\[\.]+\.)*[\w]+ # host
(?::[0-9]+)? # port
(?:/(?:[^\"\s<\[&]|\[\]|&(?:amp|lt|gt);)*)? # path, query, fragment; exclude unencoded characters
[\w\/\)]
)
(?![^<>]*?>) # not followed by unopened > (within HTML tags)
~iusx",
array($this, 'mycode_auto_url_callback'),
$message
);


return $message;
}


return $message;
}





	/**
* Parses URLs automatically.
*

	/**
* Parses URLs automatically.
*

Zeile 1620Zeile 1733

$external = '';
// Allow links like http://en.wikipedia.org/wiki/PHP_(disambiguation) but detect mismatching braces


$external = '';
// Allow links like http://en.wikipedia.org/wiki/PHP_(disambiguation) but detect mismatching braces

		while(my_substr($matches[3], -1) == ')')

		while(my_substr($matches['link'], -1) == ')')

		{

		{

			if(substr_count($matches[3], ')') > substr_count($matches[3], '('))

			if(substr_count($matches['link'], ')') > substr_count($matches['link'], '('))

			{

			{

				$matches[3] = my_substr($matches[3], 0, -1);

				$matches['link'] = my_substr($matches['link'], 0, -1);

				$external = ')'.$external;
}
else

				$external = ')'.$external;
}
else

			{

			{

				break;

				break;

			}

			}


// Example: ([...] http://en.wikipedia.org/Example_(disambiguation).)


// Example: ([...] http://en.wikipedia.org/Example_(disambiguation).)

			$last_char = my_substr($matches[3], -1);

			$last_char = my_substr($matches['link'], -1);

			while($last_char == '.' || $last_char == ',' || $last_char == '?' || $last_char == '!')
{

			while($last_char == '.' || $last_char == ',' || $last_char == '?' || $last_char == '!')
{

				$matches[3] = my_substr($matches[3], 0, -1);

				$matches[4] = my_substr($matches['link'], 0, -1);

				$external = $last_char.$external;

				$external = $last_char.$external;

				$last_char = my_substr($matches[3], -1);

				$last_char = my_substr($matches['link'], -1);

			}
}

			}
}

		if(in_array(strtolower($matches[2]), array('www', 'ftp')))
{
$url = "{$matches[2]}.{$matches[3]}";
}
else
{
$url = "{$matches[2]}://{$matches[3]}";
}

return $matches[1].$this->mycode_parse_url($url, $url).$external;

		$url = $matches['prefix'].$matches['link'];

return $this->mycode_parse_url($url, $url).$external;








	}

/**

	}

/**

Zeile 1661Zeile 1767
	* @return string The parsed message.
*/
function mycode_parse_list($message, $type="")

	* @return string The parsed message.
*/
function mycode_parse_list($message, $type="")

	{

	{

		// No list elements? That's invalid HTML
if(strpos($message, '[*]') === false)
{

		// No list elements? That's invalid HTML
if(strpos($message, '[*]') === false)
{

Zeile 1713Zeile 1819
			if($count !== NULL)
{
return "[/list&{$count}]";

			if($count !== NULL)
{
return "[/list&{$count}]";

			}
else
{

			}
else
{

				// No open list tag...
return $matches[0];

				// No open list tag...
return $matches[0];

			}
}

			}
}

		else
{
++$this->list_count;

		else
{
++$this->list_count;

Zeile 1742Zeile 1848
	 * @return string The message with smilies stripped
*/
function strip_smilies($message)

	 * @return string The message with smilies stripped
*/
function strip_smilies($message)

	{

	{

		if($this->smilies_cache == 0)
{
$this->cache_smilies();

		if($this->smilies_cache == 0)
{
$this->cache_smilies();

		}

		}

		if(is_array($this->smilies_cache))
{
$message = str_replace($this->smilies_cache, array_keys($this->smilies_cache), $message);
}
return $message;
}

		if(is_array($this->smilies_cache))
{
$message = str_replace($this->smilies_cache, array_keys($this->smilies_cache), $message);
}
return $message;
}





	/**
* Highlights a string
*

	/**
* Highlights a string
*

Zeile 1769Zeile 1875
		}

if(is_array($this->highlight_cache) && !empty($this->highlight_cache))

		}

if(is_array($this->highlight_cache) && !empty($this->highlight_cache))

		{

		{

			$message = preg_replace(array_keys($this->highlight_cache), $this->highlight_cache, $message);
}


			$message = preg_replace(array_keys($this->highlight_cache), $this->highlight_cache, $message);
}


Zeile 1796Zeile 1902
			foreach($options as $option_name => $option_value)
{
$this->options[$option_name] = $option_value;

			foreach($options as $option_name => $option_value)
{
$this->options[$option_name] = $option_value;

			}

			}

		}

// Filter bad words if requested.

		}

// Filter bad words if requested.

Zeile 1817Zeile 1923
			"#\[img=([1-9][0-9]*)x([1-9][0-9]*)\](\r\n?|\n?)(https?://([^<>\"']+?))\[/img\]#is",
"#\[url=((?!javascript)[a-z]+?://)([^\r\n\"<]+?)\](.+?)\[/url\]#si",
"#\[url=((?!javascript:)[^\r\n\"<&\(\)]+?)\](.+?)\[/url\]#si",

			"#\[img=([1-9][0-9]*)x([1-9][0-9]*)\](\r\n?|\n?)(https?://([^<>\"']+?))\[/img\]#is",
"#\[url=((?!javascript)[a-z]+?://)([^\r\n\"<]+?)\](.+?)\[/url\]#si",
"#\[url=((?!javascript:)[^\r\n\"<&\(\)]+?)\](.+?)\[/url\]#si",

 
			"#\[attachment=([0-9]+?)\]#i",

		);

$replace = array(

		);

$replace = array(

Zeile 1825Zeile 1932
			"$4",
"$3 ($1$2)",
"$2 ($1)",

			"$4",
"$3 ($1$2)",
"$2 ($1)",

 
			"",

		);

$messageBefore = "";

		);

$messageBefore = "";

Zeile 1850Zeile 1958

// Find all lists
$message = preg_replace_callback("#(\[list(=(a|A|i|I|1))?\]|\[/list\])#si", array($this, 'mycode_prepare_list'), $message);


// Find all lists
$message = preg_replace_callback("#(\[list(=(a|A|i|I|1))?\]|\[/list\])#si", array($this, 'mycode_prepare_list'), $message);





		// Replace all lists
for($i = $this->list_count; $i > 0; $i--)
{
// Ignores missing end tags
$message = preg_replace_callback("#\s?\[list(=(a|A|i|I|1))?&{$i}\](.*?)(\[/list&{$i}\]|$)(\r\n?|\n?)#si", array($this, 'mycode_parse_list_callback'), $message, 1);

		// Replace all lists
for($i = $this->list_count; $i > 0; $i--)
{
// Ignores missing end tags
$message = preg_replace_callback("#\s?\[list(=(a|A|i|I|1))?&{$i}\](.*?)(\[/list&{$i}\]|$)(\r\n?|\n?)#si", array($this, 'mycode_parse_list_callback'), $message, 1);

		}


		}


		// Run plugin hooks
$message = $plugins->run_hooks("text_parse_message", $message);

		// Run plugin hooks
$message = $plugins->run_hooks("text_parse_message", $message);





		return $message;

		return $message;

	}


	}


	/**
* Replaces certain characters with their entities in a URL.
*

	/**
* Replaces certain characters with their entities in a URL.
*

Zeile 1873Zeile 1981
	function encode_url($url)
{
$entities = array('$' => '%24', '&#36;' => '%24', '^' => '%5E', '`' => '%60', '[' => '%5B', ']' => '%5D', '{' => '%7B', '}' => '%7D', '"' => '%22', '<' => '%3C', '>' => '%3E', ' ' => '%20');

	function encode_url($url)
{
$entities = array('$' => '%24', '&#36;' => '%24', '^' => '%5E', '`' => '%60', '[' => '%5B', ']' => '%5D', '{' => '%7B', '}' => '%7D', '"' => '%22', '<' => '%3C', '>' => '%3E', ' ' => '%20');





		$url = str_replace(array_keys($entities), array_values($entities), $url);

		$url = str_replace(array_keys($entities), array_values($entities), $url);





		return $url;

		return $url;

 
	}

/**
* Determines whether the resulting HTML syntax is acceptable for output,
* according to the parser's validation policy and HTML support.
*
* @param string $source The original MyCode.
* @param string $output The output HTML code.
* @return bool
*/
function output_allowed($source, $output)
{
if($this->output_validation_policy === self::VALIDATION_DISABLE || !empty($this->options['allow_html']))
{
return true;
}
else
{
$output_valid = $this->validate_output($source, $output);

if($this->output_validation_policy === self::VALIDATION_REPORT_ONLY)
{
return true;
}
else
{
return $output_valid === true;
}
}
}

/**
* Validate HTML syntax and pass errors to the error handler.
*
* @param string $source The original MyCode.
* @param string $output The output HTML code.
* @return bool
*/
function validate_output($source, $output)
{
global $error_handler;

$ignored_error_codes = array(
// entities may be broken through smilie parsing; cache_smilies() method workaround doesn't cover all entities
'XML_ERR_INVALID_DEC_CHARREF' => 7,
'XML_ERR_INVALID_CHAR' => 9,

'XML_ERR_UNDECLARED_ENTITY' => 26, // unrecognized HTML entities
'XML_ERR_ATTRIBUTE_WITHOUT_VALUE' => 41,
'XML_ERR_TAG_NAME_MISMATCH' => 76, // the parser may output tags closed in different levels and siblings
);

libxml_use_internal_errors(true);
@libxml_disable_entity_loader(true);

simplexml_load_string('<root>'.$output.'</root>', 'SimpleXMLElement', 524288 /* LIBXML_PARSEHUGE */);

$errors = libxml_get_errors();

libxml_use_internal_errors(false);

if(
$errors &&
array_diff(
array_column($errors, 'code'),
$ignored_error_codes
)
)
{
$data = array(
'sourceHtmlEntities' => htmlspecialchars_uni($source),
'outputHtmlEntities' => htmlspecialchars_uni($output),
'errors' => $errors,
);
$error_message = "Parser output validation failed.\n";
$error_message .= var_export($data, true);

$error_handler->error(E_USER_WARNING, $error_message, __FILE__, __LINE__, false);

return false;
} else {
return true;
}

	}
}

	}
}