| Zeile 6 | Zeile 6 |
|---|
* Website: http://www.mybboard.com
* License: http://www.mybboard.com/eula.html
*
|
* Website: http://www.mybboard.com
* License: http://www.mybboard.com/eula.html
*
|
* $Id$
| * $Id: functions_post.php 934 2005-12-08 13:48:07Z chris $
|
*/
function postify($message, $allowhtml="no", $allowmycode="yes", $allowsmilies="yes", $allowimgcode="yes", $archive=0)
| */
function postify($message, $allowhtml="no", $allowmycode="yes", $allowsmilies="yes", $allowimgcode="yes", $archive=0)
|
| Zeile 137 | Zeile 137 |
|---|
function fixjavascript($message)
{
$message = preg_replace("#javascript:#i", "java script:", $message);
|
function fixjavascript($message)
{
$message = preg_replace("#javascript:#i", "java script:", $message);
|
/* This patch provided by Ryan (try to remove XSS Cross-site scripting issues). */
| // this patch provided by Ryan (try to remove XSS Cross-site scripting issues).
|
$message = preg_replace("#(a)(lert)#ie", "'&#'.ord($1).';$2'", $message);
$message = preg_replace("#onmouseover#i", "onmouseover", $message);
$message = preg_replace("#onmouseout#i", "onmouseout", $message);
| $message = preg_replace("#(a)(lert)#ie", "'&#'.ord($1).';$2'", $message);
$message = preg_replace("#onmouseover#i", "onmouseover", $message);
$message = preg_replace("#onmouseout#i", "onmouseout", $message);
|
| Zeile 160 | Zeile 160 |
|---|
reset($badwordcache);
foreach($badwordcache as $bid => $badword)
{
|
reset($badwordcache);
foreach($badwordcache as $bid => $badword)
{
|
if(!$badword['replacement'])
{
$badword['replacement'] = "*****";
}
| if(!$badword['replacement']) $badword['replacement'] = "*****";
|
$badword['badword'] = str_replace("\\", "\\\\", $badword['badword']);
$message = preg_replace("#".$badword['badword']."#i", $badword['replacement'], $message);
}
| $badword['badword'] = str_replace("\\", "\\\\", $badword['badword']);
$message = preg_replace("#".$badword['badword']."#i", $badword['replacement'], $message);
}
|